<!DOCTYPE html>
<html>
<head>
	<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
	<meta name="generator" content="ApiGen 2.8.0" />
	<meta name="robots" content="noindex" />

	<title>File system/core/Security.php | tis</title>

	<script type="text/javascript" src="resources/combined.js?1735077957"></script>
	<script type="text/javascript" src="elementlist.js?2977522689"></script>
	<link rel="stylesheet" type="text/css" media="all" href="resources/style.css?3505392360" />

</head>

<body>
<div id="left">
	<div id="menu">
		<a href="index.html" title="Overview"><span>Overview</span></a>


		<div id="groups">
			<h3>Packages</h3>
			<ul>
				<li class="active"><a href="package-CodeIgniter.html">CodeIgniter<span></span></a>
						<ul>
				<li><a href="package-CodeIgniter.Controllers.html">Controllers</a>
						</li>
				<li><a href="package-CodeIgniter.Drivers.html">Drivers</a>
						</li>
				<li class="active"><a href="package-CodeIgniter.Libraries.html">Libraries</a>
						</li>
				<li><a href="package-CodeIgniter.Models.html">Models</a>
						</li>
							</ul></li>
				<li><a href="package-None.html">None</a>
						</li>
			</ul>
		</div>

		<hr />


		<div id="elements">
			<h3>Classes</h3>
			<ul>
				<li><a href="class-Authhelper.html">Authhelper</a></li>
				<li><a href="class-CI_Benchmark.html">CI_Benchmark</a></li>
				<li><a href="class-CI_Cache.html">CI_Cache</a></li>
				<li><a href="class-CI_Cache_apc.html">CI_Cache_apc</a></li>
				<li><a href="class-CI_Cache_dummy.html">CI_Cache_dummy</a></li>
				<li><a href="class-CI_Cache_file.html">CI_Cache_file</a></li>
				<li><a href="class-CI_Cache_memcached.html">CI_Cache_memcached</a></li>
				<li><a href="class-CI_Calendar.html">CI_Calendar</a></li>
				<li><a href="class-CI_Cart.html">CI_Cart</a></li>
				<li><a href="class-CI_Config.html">CI_Config</a></li>
				<li><a href="class-CI_Controller.html">CI_Controller</a></li>
				<li><a href="class-CI_Driver.html">CI_Driver</a></li>
				<li><a href="class-CI_Driver_Library.html">CI_Driver_Library</a></li>
				<li><a href="class-CI_Email.html">CI_Email</a></li>
				<li><a href="class-CI_Encrypt.html">CI_Encrypt</a></li>
				<li><a href="class-CI_Exceptions.html">CI_Exceptions</a></li>
				<li><a href="class-CI_Form_validation.html">CI_Form_validation</a></li>
				<li><a href="class-CI_FTP.html">CI_FTP</a></li>
				<li><a href="class-CI_Hooks.html">CI_Hooks</a></li>
				<li><a href="class-CI_Image_lib.html">CI_Image_lib</a></li>
				<li><a href="class-CI_Input.html">CI_Input</a></li>
				<li><a href="class-CI_Javascript.html">CI_Javascript</a></li>
				<li><a href="class-CI_Jquery.html">CI_Jquery</a></li>
				<li><a href="class-CI_Lang.html">CI_Lang</a></li>
				<li><a href="class-CI_Loader.html">CI_Loader</a></li>
				<li><a href="class-CI_Log.html">CI_Log</a></li>
				<li><a href="class-CI_Migration.html">CI_Migration</a></li>
				<li><a href="class-CI_Model.html">CI_Model</a></li>
				<li><a href="class-CI_Output.html">CI_Output</a></li>
				<li><a href="class-CI_Pagination.html">CI_Pagination</a></li>
				<li><a href="class-CI_Parser.html">CI_Parser</a></li>
				<li><a href="class-CI_Profiler.html">CI_Profiler</a></li>
				<li><a href="class-CI_Router.html">CI_Router</a></li>
				<li class="active"><a href="class-CI_Security.html">CI_Security</a></li>
				<li><a href="class-CI_Session.html">CI_Session</a></li>
				<li><a href="class-CI_SHA1.html">CI_SHA1</a></li>
				<li><a href="class-CI_Table.html">CI_Table</a></li>
				<li><a href="class-CI_Trackback.html">CI_Trackback</a></li>
				<li><a href="class-CI_Unit_test.html">CI_Unit_test</a></li>
				<li><a href="class-CI_Upload.html">CI_Upload</a></li>
				<li><a href="class-CI_URI.html">CI_URI</a></li>
				<li><a href="class-CI_User_agent.html">CI_User_agent</a></li>
				<li><a href="class-CI_Utf8.html">CI_Utf8</a></li>
				<li><a href="class-CI_Xmlrpc.html">CI_Xmlrpc</a></li>
				<li><a href="class-CI_Xmlrpcs.html">CI_Xmlrpcs</a></li>
				<li><a href="class-CI_Zip.html">CI_Zip</a></li>
				<li><a href="class-MY_Controller.html">MY_Controller</a></li>
				<li><a href="class-Welcome.html">Welcome</a></li>
			</ul>





		</div>
	</div>
</div>

<div id="splitter"></div>

<div id="right">
<div id="rightInner">
	<form id="search">
		<input type="hidden" name="cx" value="" />
		<input type="hidden" name="ie" value="UTF-8" />
		<input type="text" name="q" class="text" />
		<input type="submit" value="Search" />
	</form>

	<div id="navigation">
		<ul>
			<li>
				<a href="index.html" title="Overview"><span>Overview</span></a>
			</li>
			<li>
				<a href="package-CodeIgniter.Libraries.html" title="Summary of CodeIgniter\Libraries"><span>Package</span></a>
			</li>
			<li>
				<a href="class-CI_Security.html" title="Summary of CI_Security"><span>Class</span></a>
			</li>
		</ul>
		<ul>
			<li>
				<a href="tree.html" title="Tree view of classes, interfaces, traits and exceptions"><span>Tree</span></a>
			</li>
		</ul>
		<ul>
		</ul>
	</div>

<pre><code><span id="1" class="l"><a class="l" href="#1">  1: </a><span class="xlang">&lt;?php</span> <span class="php-keyword1">if</span> ( ! <span class="php-keyword2">defined</span>(<span class="php-quote">'BASEPATH'</span>)) <span class="php-keyword1">exit</span>(<span class="php-quote">'No direct script access allowed'</span>);
</span><span id="2" class="l"><a class="l" href="#2">  2: </a><span class="php-comment">/**
</span></span><span id="3" class="l"><a class="l" href="#3">  3: </a><span class="php-comment"> * CodeIgniter
</span></span><span id="4" class="l"><a class="l" href="#4">  4: </a><span class="php-comment"> *
</span></span><span id="5" class="l"><a class="l" href="#5">  5: </a><span class="php-comment"> * An open source application development framework for PHP 5.1.6 or newer
</span></span><span id="6" class="l"><a class="l" href="#6">  6: </a><span class="php-comment"> *
</span></span><span id="7" class="l"><a class="l" href="#7">  7: </a><span class="php-comment"> * @package     CodeIgniter
</span></span><span id="8" class="l"><a class="l" href="#8">  8: </a><span class="php-comment"> * @author      ExpressionEngine Dev Team
</span></span><span id="9" class="l"><a class="l" href="#9">  9: </a><span class="php-comment"> * @copyright   Copyright (c) 2008 - 2011, EllisLab, Inc.
</span></span><span id="10" class="l"><a class="l" href="#10"> 10: </a><span class="php-comment"> * @license     http://codeigniter.com/user_guide/license.html
</span></span><span id="11" class="l"><a class="l" href="#11"> 11: </a><span class="php-comment"> * @link        http://codeigniter.com
</span></span><span id="12" class="l"><a class="l" href="#12"> 12: </a><span class="php-comment"> * @since       Version 1.0
</span></span><span id="13" class="l"><a class="l" href="#13"> 13: </a><span class="php-comment"> * @filesource
</span></span><span id="14" class="l"><a class="l" href="#14"> 14: </a><span class="php-comment"> */</span>
</span><span id="15" class="l"><a class="l" href="#15"> 15: </a>
</span><span id="16" class="l"><a class="l" href="#16"> 16: </a><span class="php-comment">// ------------------------------------------------------------------------</span>
</span><span id="17" class="l"><a class="l" href="#17"> 17: </a>
</span><span id="18" class="l"><a class="l" href="#18"> 18: </a><span class="php-comment">/**
</span></span><span id="19" class="l"><a class="l" href="#19"> 19: </a><span class="php-comment"> * Security Class
</span></span><span id="20" class="l"><a class="l" href="#20"> 20: </a><span class="php-comment"> *
</span></span><span id="21" class="l"><a class="l" href="#21"> 21: </a><span class="php-comment"> * @package     CodeIgniter
</span></span><span id="22" class="l"><a class="l" href="#22"> 22: </a><span class="php-comment"> * @subpackage  Libraries
</span></span><span id="23" class="l"><a class="l" href="#23"> 23: </a><span class="php-comment"> * @category    Security
</span></span><span id="24" class="l"><a class="l" href="#24"> 24: </a><span class="php-comment"> * @author      ExpressionEngine Dev Team
</span></span><span id="25" class="l"><a class="l" href="#25"> 25: </a><span class="php-comment"> * @link        http://codeigniter.com/user_guide/libraries/security.html
</span></span><span id="26" class="l"><a class="l" href="#26"> 26: </a><span class="php-comment"> */</span>
</span><span id="27" class="l"><a class="l" href="#27"> 27: </a><span class="php-keyword1">class</span> <a id="CI_Security" href="#CI_Security">CI_Security</a> {
</span><span id="28" class="l"><a class="l" href="#28"> 28: </a>
</span><span id="29" class="l"><a class="l" href="#29"> 29: </a>    <span class="php-comment">/**
</span></span><span id="30" class="l"><a class="l" href="#30"> 30: </a><span class="php-comment">     * Random Hash for protecting URLs
</span></span><span id="31" class="l"><a class="l" href="#31"> 31: </a><span class="php-comment">     *
</span></span><span id="32" class="l"><a class="l" href="#32"> 32: </a><span class="php-comment">     * @var string
</span></span><span id="33" class="l"><a class="l" href="#33"> 33: </a><span class="php-comment">     * @access protected
</span></span><span id="34" class="l"><a class="l" href="#34"> 34: </a><span class="php-comment">     */</span>
</span><span id="35" class="l"><a class="l" href="#35"> 35: </a>    <span class="php-keyword1">protected</span> <span class="php-var"><a id="$_xss_hash" href="#$_xss_hash">$_xss_hash</a></span>            = <span class="php-quote">''</span>;
</span><span id="36" class="l"><a class="l" href="#36"> 36: </a>    <span class="php-comment">/**
</span></span><span id="37" class="l"><a class="l" href="#37"> 37: </a><span class="php-comment">     * Random Hash for Cross Site Request Forgery Protection Cookie
</span></span><span id="38" class="l"><a class="l" href="#38"> 38: </a><span class="php-comment">     *
</span></span><span id="39" class="l"><a class="l" href="#39"> 39: </a><span class="php-comment">     * @var string
</span></span><span id="40" class="l"><a class="l" href="#40"> 40: </a><span class="php-comment">     * @access protected
</span></span><span id="41" class="l"><a class="l" href="#41"> 41: </a><span class="php-comment">     */</span>
</span><span id="42" class="l"><a class="l" href="#42"> 42: </a>    <span class="php-keyword1">protected</span> <span class="php-var"><a id="$_csrf_hash" href="#$_csrf_hash">$_csrf_hash</a></span>           = <span class="php-quote">''</span>;
</span><span id="43" class="l"><a class="l" href="#43"> 43: </a>    <span class="php-comment">/**
</span></span><span id="44" class="l"><a class="l" href="#44"> 44: </a><span class="php-comment">     * Expiration time for Cross Site Request Forgery Protection Cookie
</span></span><span id="45" class="l"><a class="l" href="#45"> 45: </a><span class="php-comment">     * Defaults to two hours (in seconds)
</span></span><span id="46" class="l"><a class="l" href="#46"> 46: </a><span class="php-comment">     *
</span></span><span id="47" class="l"><a class="l" href="#47"> 47: </a><span class="php-comment">     * @var int
</span></span><span id="48" class="l"><a class="l" href="#48"> 48: </a><span class="php-comment">     * @access protected
</span></span><span id="49" class="l"><a class="l" href="#49"> 49: </a><span class="php-comment">     */</span>
</span><span id="50" class="l"><a class="l" href="#50"> 50: </a>    <span class="php-keyword1">protected</span> <span class="php-var"><a id="$_csrf_expire" href="#$_csrf_expire">$_csrf_expire</a></span>         = <span class="php-num">7200</span>;
</span><span id="51" class="l"><a class="l" href="#51"> 51: </a>    <span class="php-comment">/**
</span></span><span id="52" class="l"><a class="l" href="#52"> 52: </a><span class="php-comment">     * Token name for Cross Site Request Forgery Protection Cookie
</span></span><span id="53" class="l"><a class="l" href="#53"> 53: </a><span class="php-comment">     *
</span></span><span id="54" class="l"><a class="l" href="#54"> 54: </a><span class="php-comment">     * @var string
</span></span><span id="55" class="l"><a class="l" href="#55"> 55: </a><span class="php-comment">     * @access protected
</span></span><span id="56" class="l"><a class="l" href="#56"> 56: </a><span class="php-comment">     */</span>
</span><span id="57" class="l"><a class="l" href="#57"> 57: </a>    <span class="php-keyword1">protected</span> <span class="php-var"><a id="$_csrf_token_name" href="#$_csrf_token_name">$_csrf_token_name</a></span>     = <span class="php-quote">'ci_csrf_token'</span>;
</span><span id="58" class="l"><a class="l" href="#58"> 58: </a>    <span class="php-comment">/**
</span></span><span id="59" class="l"><a class="l" href="#59"> 59: </a><span class="php-comment">     * Cookie name for Cross Site Request Forgery Protection Cookie
</span></span><span id="60" class="l"><a class="l" href="#60"> 60: </a><span class="php-comment">     *
</span></span><span id="61" class="l"><a class="l" href="#61"> 61: </a><span class="php-comment">     * @var string
</span></span><span id="62" class="l"><a class="l" href="#62"> 62: </a><span class="php-comment">     * @access protected
</span></span><span id="63" class="l"><a class="l" href="#63"> 63: </a><span class="php-comment">     */</span>
</span><span id="64" class="l"><a class="l" href="#64"> 64: </a>    <span class="php-keyword1">protected</span> <span class="php-var"><a id="$_csrf_cookie_name" href="#$_csrf_cookie_name">$_csrf_cookie_name</a></span>    = <span class="php-quote">'ci_csrf_token'</span>;
</span><span id="65" class="l"><a class="l" href="#65"> 65: </a>    <span class="php-comment">/**
</span></span><span id="66" class="l"><a class="l" href="#66"> 66: </a><span class="php-comment">     * List of never allowed strings
</span></span><span id="67" class="l"><a class="l" href="#67"> 67: </a><span class="php-comment">     *
</span></span><span id="68" class="l"><a class="l" href="#68"> 68: </a><span class="php-comment">     * @var array
</span></span><span id="69" class="l"><a class="l" href="#69"> 69: </a><span class="php-comment">     * @access protected
</span></span><span id="70" class="l"><a class="l" href="#70"> 70: </a><span class="php-comment">     */</span>
</span><span id="71" class="l"><a class="l" href="#71"> 71: </a>    <span class="php-keyword1">protected</span> <span class="php-var"><a id="$_never_allowed_str" href="#$_never_allowed_str">$_never_allowed_str</a></span> = <span class="php-keyword1">array</span>(
</span><span id="72" class="l"><a class="l" href="#72"> 72: </a>        <span class="php-quote">'document.cookie'</span>   =&gt; <span class="php-quote">'[removed]'</span>,
</span><span id="73" class="l"><a class="l" href="#73"> 73: </a>        <span class="php-quote">'document.write'</span>    =&gt; <span class="php-quote">'[removed]'</span>,
</span><span id="74" class="l"><a class="l" href="#74"> 74: </a>        <span class="php-quote">'.parentNode'</span>       =&gt; <span class="php-quote">'[removed]'</span>,
</span><span id="75" class="l"><a class="l" href="#75"> 75: </a>        <span class="php-quote">'.innerHTML'</span>        =&gt; <span class="php-quote">'[removed]'</span>,
</span><span id="76" class="l"><a class="l" href="#76"> 76: </a>        <span class="php-quote">'window.location'</span>   =&gt; <span class="php-quote">'[removed]'</span>,
</span><span id="77" class="l"><a class="l" href="#77"> 77: </a>        <span class="php-quote">'-moz-binding'</span>      =&gt; <span class="php-quote">'[removed]'</span>,
</span><span id="78" class="l"><a class="l" href="#78"> 78: </a>        <span class="php-quote">'&lt;!--'</span>              =&gt; <span class="php-quote">'&amp;lt;!--'</span>,
</span><span id="79" class="l"><a class="l" href="#79"> 79: </a>        <span class="php-quote">'--&gt;'</span>               =&gt; <span class="php-quote">'--&amp;gt;'</span>,
</span><span id="80" class="l"><a class="l" href="#80"> 80: </a>        <span class="php-quote">'&lt;![CDATA['</span>         =&gt; <span class="php-quote">'&amp;lt;![CDATA['</span>,
</span><span id="81" class="l"><a class="l" href="#81"> 81: </a>        <span class="php-quote">'&lt;comment&gt;'</span>         =&gt; <span class="php-quote">'&amp;lt;comment&amp;gt;'</span>
</span><span id="82" class="l"><a class="l" href="#82"> 82: </a>    );
</span><span id="83" class="l"><a class="l" href="#83"> 83: </a>
</span><span id="84" class="l"><a class="l" href="#84"> 84: </a>    <span class="php-comment">/* never allowed, regex replacement */</span>
</span><span id="85" class="l"><a class="l" href="#85"> 85: </a>    <span class="php-comment">/**
</span></span><span id="86" class="l"><a class="l" href="#86"> 86: </a><span class="php-comment">     * List of never allowed regex replacement
</span></span><span id="87" class="l"><a class="l" href="#87"> 87: </a><span class="php-comment">     *
</span></span><span id="88" class="l"><a class="l" href="#88"> 88: </a><span class="php-comment">     * @var array
</span></span><span id="89" class="l"><a class="l" href="#89"> 89: </a><span class="php-comment">     * @access protected
</span></span><span id="90" class="l"><a class="l" href="#90"> 90: </a><span class="php-comment">     */</span>
</span><span id="91" class="l"><a class="l" href="#91"> 91: </a>    <span class="php-keyword1">protected</span> <span class="php-var"><a id="$_never_allowed_regex" href="#$_never_allowed_regex">$_never_allowed_regex</a></span> = <span class="php-keyword1">array</span>(
</span><span id="92" class="l"><a class="l" href="#92"> 92: </a>        <span class="php-quote">'javascript\s*:'</span>,
</span><span id="93" class="l"><a class="l" href="#93"> 93: </a>        <span class="php-quote">'expression\s*(\(|&amp;\#40;)'</span>, <span class="php-comment">// CSS and IE</span>
</span><span id="94" class="l"><a class="l" href="#94"> 94: </a>        <span class="php-quote">'vbscript\s*:'</span>, <span class="php-comment">// IE, surprise!</span>
</span><span id="95" class="l"><a class="l" href="#95"> 95: </a>        <span class="php-quote">'Redirect\s+302'</span>,
</span><span id="96" class="l"><a class="l" href="#96"> 96: </a>        <span class="php-quote">&quot;([\&quot;'])?data\s*:[^\\1]*?base64[^\\1]*?,[^\\1]*?\\1?&quot;</span>
</span><span id="97" class="l"><a class="l" href="#97"> 97: </a>    );
</span><span id="98" class="l"><a class="l" href="#98"> 98: </a>
</span><span id="99" class="l"><a class="l" href="#99"> 99: </a>    <span class="php-comment">/**
</span></span><span id="100" class="l"><a class="l" href="#100">100: </a><span class="php-comment">     * Constructor
</span></span><span id="101" class="l"><a class="l" href="#101">101: </a><span class="php-comment">     *
</span></span><span id="102" class="l"><a class="l" href="#102">102: </a><span class="php-comment">     * @return  void
</span></span><span id="103" class="l"><a class="l" href="#103">103: </a><span class="php-comment">     */</span>
</span><span id="104" class="l"><a class="l" href="#104">104: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="___construct" href="#___construct">__construct</a>()
</span><span id="105" class="l"><a class="l" href="#105">105: </a>    {
</span><span id="106" class="l"><a class="l" href="#106">106: </a>        <span class="php-comment">// Is CSRF protection enabled?</span>
</span><span id="107" class="l"><a class="l" href="#107">107: </a>        <span class="php-keyword1">if</span> (config_item(<span class="php-quote">'csrf_protection'</span>) === <span class="php-keyword1">TRUE</span>)
</span><span id="108" class="l"><a class="l" href="#108">108: </a>        {
</span><span id="109" class="l"><a class="l" href="#109">109: </a>            <span class="php-comment">// CSRF config</span>
</span><span id="110" class="l"><a class="l" href="#110">110: </a>            <span class="php-keyword1">foreach</span> (<span class="php-keyword1">array</span>(<span class="php-quote">'csrf_expire'</span>, <span class="php-quote">'csrf_token_name'</span>, <span class="php-quote">'csrf_cookie_name'</span>) <span class="php-keyword1">as</span> <span class="php-var">$key</span>)
</span><span id="111" class="l"><a class="l" href="#111">111: </a>            {
</span><span id="112" class="l"><a class="l" href="#112">112: </a>                <span class="php-keyword1">if</span> (<span class="php-keyword1">FALSE</span> !== (<span class="php-var">$val</span> = config_item(<span class="php-var">$key</span>)))
</span><span id="113" class="l"><a class="l" href="#113">113: </a>                {
</span><span id="114" class="l"><a class="l" href="#114">114: </a>                    <span class="php-var">$this</span>-&gt;{<span class="php-quote">'_'</span>.<span class="php-var">$key</span>} = <span class="php-var">$val</span>;
</span><span id="115" class="l"><a class="l" href="#115">115: </a>                }
</span><span id="116" class="l"><a class="l" href="#116">116: </a>            }
</span><span id="117" class="l"><a class="l" href="#117">117: </a>
</span><span id="118" class="l"><a class="l" href="#118">118: </a>            <span class="php-comment">// Append application specific cookie prefix</span>
</span><span id="119" class="l"><a class="l" href="#119">119: </a>            <span class="php-keyword1">if</span> (config_item(<span class="php-quote">'cookie_prefix'</span>))
</span><span id="120" class="l"><a class="l" href="#120">120: </a>            {
</span><span id="121" class="l"><a class="l" href="#121">121: </a>                <span class="php-var">$this</span>-&gt;_csrf_cookie_name = config_item(<span class="php-quote">'cookie_prefix'</span>).<span class="php-var">$this</span>-&gt;_csrf_cookie_name;
</span><span id="122" class="l"><a class="l" href="#122">122: </a>            }
</span><span id="123" class="l"><a class="l" href="#123">123: </a>
</span><span id="124" class="l"><a class="l" href="#124">124: </a>            <span class="php-comment">// Set the CSRF hash</span>
</span><span id="125" class="l"><a class="l" href="#125">125: </a>            <span class="php-var">$this</span>-&gt;_csrf_set_hash();
</span><span id="126" class="l"><a class="l" href="#126">126: </a>        }
</span><span id="127" class="l"><a class="l" href="#127">127: </a>
</span><span id="128" class="l"><a class="l" href="#128">128: </a>        log_message(<span class="php-quote">'debug'</span>, <span class="php-quote">&quot;Security Class Initialized&quot;</span>);
</span><span id="129" class="l"><a class="l" href="#129">129: </a>    }
</span><span id="130" class="l"><a class="l" href="#130">130: </a>
</span><span id="131" class="l"><a class="l" href="#131">131: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="132" class="l"><a class="l" href="#132">132: </a>
</span><span id="133" class="l"><a class="l" href="#133">133: </a>    <span class="php-comment">/**
</span></span><span id="134" class="l"><a class="l" href="#134">134: </a><span class="php-comment">     * Verify Cross Site Request Forgery Protection
</span></span><span id="135" class="l"><a class="l" href="#135">135: </a><span class="php-comment">     *
</span></span><span id="136" class="l"><a class="l" href="#136">136: </a><span class="php-comment">     * @return  object
</span></span><span id="137" class="l"><a class="l" href="#137">137: </a><span class="php-comment">     */</span>
</span><span id="138" class="l"><a class="l" href="#138">138: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_csrf_verify" href="#_csrf_verify">csrf_verify</a>()
</span><span id="139" class="l"><a class="l" href="#139">139: </a>    {
</span><span id="140" class="l"><a class="l" href="#140">140: </a>        <span class="php-comment">// If it's not a POST request we will set the CSRF cookie</span>
</span><span id="141" class="l"><a class="l" href="#141">141: </a>        <span class="php-keyword1">if</span> (<span class="php-keyword2">strtoupper</span>(<span class="php-var">$_SERVER</span>[<span class="php-quote">'REQUEST_METHOD'</span>]) !== <span class="php-quote">'POST'</span>)
</span><span id="142" class="l"><a class="l" href="#142">142: </a>        {
</span><span id="143" class="l"><a class="l" href="#143">143: </a>            <span class="php-keyword1">return</span> <span class="php-var">$this</span>-&gt;csrf_set_cookie();
</span><span id="144" class="l"><a class="l" href="#144">144: </a>        }
</span><span id="145" class="l"><a class="l" href="#145">145: </a>
</span><span id="146" class="l"><a class="l" href="#146">146: </a>        <span class="php-comment">// Do the tokens exist in both the _POST and _COOKIE arrays?</span>
</span><span id="147" class="l"><a class="l" href="#147">147: </a>        <span class="php-keyword1">if</span> ( ! <span class="php-keyword1">isset</span>(<span class="php-var">$_POST</span>[<span class="php-var">$this</span>-&gt;_csrf_token_name], <span class="php-var">$_COOKIE</span>[<span class="php-var">$this</span>-&gt;_csrf_cookie_name]))
</span><span id="148" class="l"><a class="l" href="#148">148: </a>        {
</span><span id="149" class="l"><a class="l" href="#149">149: </a>            <span class="php-var">$this</span>-&gt;csrf_show_error();
</span><span id="150" class="l"><a class="l" href="#150">150: </a>        }
</span><span id="151" class="l"><a class="l" href="#151">151: </a>
</span><span id="152" class="l"><a class="l" href="#152">152: </a>        <span class="php-comment">// Do the tokens match?</span>
</span><span id="153" class="l"><a class="l" href="#153">153: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$_POST</span>[<span class="php-var">$this</span>-&gt;_csrf_token_name] != <span class="php-var">$_COOKIE</span>[<span class="php-var">$this</span>-&gt;_csrf_cookie_name])
</span><span id="154" class="l"><a class="l" href="#154">154: </a>        {
</span><span id="155" class="l"><a class="l" href="#155">155: </a>            <span class="php-var">$this</span>-&gt;csrf_show_error();
</span><span id="156" class="l"><a class="l" href="#156">156: </a>        }
</span><span id="157" class="l"><a class="l" href="#157">157: </a>
</span><span id="158" class="l"><a class="l" href="#158">158: </a>        <span class="php-comment">// We kill this since we're done and we don't want to</span>
</span><span id="159" class="l"><a class="l" href="#159">159: </a>        <span class="php-comment">// polute the _POST array</span>
</span><span id="160" class="l"><a class="l" href="#160">160: </a>        <span class="php-keyword1">unset</span>(<span class="php-var">$_POST</span>[<span class="php-var">$this</span>-&gt;_csrf_token_name]);
</span><span id="161" class="l"><a class="l" href="#161">161: </a>
</span><span id="162" class="l"><a class="l" href="#162">162: </a>        <span class="php-comment">// Nothing should last forever</span>
</span><span id="163" class="l"><a class="l" href="#163">163: </a>        <span class="php-keyword1">unset</span>(<span class="php-var">$_COOKIE</span>[<span class="php-var">$this</span>-&gt;_csrf_cookie_name]);
</span><span id="164" class="l"><a class="l" href="#164">164: </a>        <span class="php-var">$this</span>-&gt;_csrf_set_hash();
</span><span id="165" class="l"><a class="l" href="#165">165: </a>        <span class="php-var">$this</span>-&gt;csrf_set_cookie();
</span><span id="166" class="l"><a class="l" href="#166">166: </a>
</span><span id="167" class="l"><a class="l" href="#167">167: </a>        log_message(<span class="php-quote">'debug'</span>, <span class="php-quote">'CSRF token verified'</span>);
</span><span id="168" class="l"><a class="l" href="#168">168: </a>
</span><span id="169" class="l"><a class="l" href="#169">169: </a>        <span class="php-keyword1">return</span> <span class="php-var">$this</span>;
</span><span id="170" class="l"><a class="l" href="#170">170: </a>    }
</span><span id="171" class="l"><a class="l" href="#171">171: </a>
</span><span id="172" class="l"><a class="l" href="#172">172: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="173" class="l"><a class="l" href="#173">173: </a>
</span><span id="174" class="l"><a class="l" href="#174">174: </a>    <span class="php-comment">/**
</span></span><span id="175" class="l"><a class="l" href="#175">175: </a><span class="php-comment">     * Set Cross Site Request Forgery Protection Cookie
</span></span><span id="176" class="l"><a class="l" href="#176">176: </a><span class="php-comment">     *
</span></span><span id="177" class="l"><a class="l" href="#177">177: </a><span class="php-comment">     * @return  object
</span></span><span id="178" class="l"><a class="l" href="#178">178: </a><span class="php-comment">     */</span>
</span><span id="179" class="l"><a class="l" href="#179">179: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_csrf_set_cookie" href="#_csrf_set_cookie">csrf_set_cookie</a>()
</span><span id="180" class="l"><a class="l" href="#180">180: </a>    {
</span><span id="181" class="l"><a class="l" href="#181">181: </a>        <span class="php-var">$expire</span> = <span class="php-keyword2">time</span>() + <span class="php-var">$this</span>-&gt;_csrf_expire;
</span><span id="182" class="l"><a class="l" href="#182">182: </a>        <span class="php-var">$secure_cookie</span> = (config_item(<span class="php-quote">'cookie_secure'</span>) === <span class="php-keyword1">TRUE</span>) ? <span class="php-num">1</span> : <span class="php-num">0</span>;
</span><span id="183" class="l"><a class="l" href="#183">183: </a>
</span><span id="184" class="l"><a class="l" href="#184">184: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$secure_cookie</span> &amp;&amp; (<span class="php-keyword1">empty</span>(<span class="php-var">$_SERVER</span>[<span class="php-quote">'HTTPS'</span>]) <span class="php-keyword1">OR</span> <span class="php-keyword2">strtolower</span>(<span class="php-var">$_SERVER</span>[<span class="php-quote">'HTTPS'</span>]) === <span class="php-quote">'off'</span>))
</span><span id="185" class="l"><a class="l" href="#185">185: </a>        {
</span><span id="186" class="l"><a class="l" href="#186">186: </a>            <span class="php-keyword1">return</span> <span class="php-keyword1">FALSE</span>;
</span><span id="187" class="l"><a class="l" href="#187">187: </a>        }
</span><span id="188" class="l"><a class="l" href="#188">188: </a>
</span><span id="189" class="l"><a class="l" href="#189">189: </a>        <span class="php-keyword2">setcookie</span>(<span class="php-var">$this</span>-&gt;_csrf_cookie_name, <span class="php-var">$this</span>-&gt;_csrf_hash, <span class="php-var">$expire</span>, config_item(<span class="php-quote">'cookie_path'</span>), config_item(<span class="php-quote">'cookie_domain'</span>), <span class="php-var">$secure_cookie</span>);
</span><span id="190" class="l"><a class="l" href="#190">190: </a>
</span><span id="191" class="l"><a class="l" href="#191">191: </a>        log_message(<span class="php-quote">'debug'</span>, <span class="php-quote">&quot;CRSF cookie Set&quot;</span>);
</span><span id="192" class="l"><a class="l" href="#192">192: </a>
</span><span id="193" class="l"><a class="l" href="#193">193: </a>        <span class="php-keyword1">return</span> <span class="php-var">$this</span>;
</span><span id="194" class="l"><a class="l" href="#194">194: </a>    }
</span><span id="195" class="l"><a class="l" href="#195">195: </a>
</span><span id="196" class="l"><a class="l" href="#196">196: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="197" class="l"><a class="l" href="#197">197: </a>
</span><span id="198" class="l"><a class="l" href="#198">198: </a>    <span class="php-comment">/**
</span></span><span id="199" class="l"><a class="l" href="#199">199: </a><span class="php-comment">     * Show CSRF Error
</span></span><span id="200" class="l"><a class="l" href="#200">200: </a><span class="php-comment">     *
</span></span><span id="201" class="l"><a class="l" href="#201">201: </a><span class="php-comment">     * @return  void
</span></span><span id="202" class="l"><a class="l" href="#202">202: </a><span class="php-comment">     */</span>
</span><span id="203" class="l"><a class="l" href="#203">203: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_csrf_show_error" href="#_csrf_show_error">csrf_show_error</a>()
</span><span id="204" class="l"><a class="l" href="#204">204: </a>    {
</span><span id="205" class="l"><a class="l" href="#205">205: </a>        show_error(<span class="php-quote">'The action you have requested is not allowed.'</span>);
</span><span id="206" class="l"><a class="l" href="#206">206: </a>    }
</span><span id="207" class="l"><a class="l" href="#207">207: </a>
</span><span id="208" class="l"><a class="l" href="#208">208: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="209" class="l"><a class="l" href="#209">209: </a>
</span><span id="210" class="l"><a class="l" href="#210">210: </a>    <span class="php-comment">/**
</span></span><span id="211" class="l"><a class="l" href="#211">211: </a><span class="php-comment">     * Get CSRF Hash
</span></span><span id="212" class="l"><a class="l" href="#212">212: </a><span class="php-comment">     *
</span></span><span id="213" class="l"><a class="l" href="#213">213: </a><span class="php-comment">     * Getter Method
</span></span><span id="214" class="l"><a class="l" href="#214">214: </a><span class="php-comment">     *
</span></span><span id="215" class="l"><a class="l" href="#215">215: </a><span class="php-comment">     * @return  string  self::_csrf_hash
</span></span><span id="216" class="l"><a class="l" href="#216">216: </a><span class="php-comment">     */</span>
</span><span id="217" class="l"><a class="l" href="#217">217: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_get_csrf_hash" href="#_get_csrf_hash">get_csrf_hash</a>()
</span><span id="218" class="l"><a class="l" href="#218">218: </a>    {
</span><span id="219" class="l"><a class="l" href="#219">219: </a>        <span class="php-keyword1">return</span> <span class="php-var">$this</span>-&gt;_csrf_hash;
</span><span id="220" class="l"><a class="l" href="#220">220: </a>    }
</span><span id="221" class="l"><a class="l" href="#221">221: </a>
</span><span id="222" class="l"><a class="l" href="#222">222: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="223" class="l"><a class="l" href="#223">223: </a>
</span><span id="224" class="l"><a class="l" href="#224">224: </a>    <span class="php-comment">/**
</span></span><span id="225" class="l"><a class="l" href="#225">225: </a><span class="php-comment">     * Get CSRF Token Name
</span></span><span id="226" class="l"><a class="l" href="#226">226: </a><span class="php-comment">     *
</span></span><span id="227" class="l"><a class="l" href="#227">227: </a><span class="php-comment">     * Getter Method
</span></span><span id="228" class="l"><a class="l" href="#228">228: </a><span class="php-comment">     *
</span></span><span id="229" class="l"><a class="l" href="#229">229: </a><span class="php-comment">     * @return  string  self::csrf_token_name
</span></span><span id="230" class="l"><a class="l" href="#230">230: </a><span class="php-comment">     */</span>
</span><span id="231" class="l"><a class="l" href="#231">231: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_get_csrf_token_name" href="#_get_csrf_token_name">get_csrf_token_name</a>()
</span><span id="232" class="l"><a class="l" href="#232">232: </a>    {
</span><span id="233" class="l"><a class="l" href="#233">233: </a>        <span class="php-keyword1">return</span> <span class="php-var">$this</span>-&gt;_csrf_token_name;
</span><span id="234" class="l"><a class="l" href="#234">234: </a>    }
</span><span id="235" class="l"><a class="l" href="#235">235: </a>
</span><span id="236" class="l"><a class="l" href="#236">236: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="237" class="l"><a class="l" href="#237">237: </a>
</span><span id="238" class="l"><a class="l" href="#238">238: </a>    <span class="php-comment">/**
</span></span><span id="239" class="l"><a class="l" href="#239">239: </a><span class="php-comment">     * XSS Clean
</span></span><span id="240" class="l"><a class="l" href="#240">240: </a><span class="php-comment">     *
</span></span><span id="241" class="l"><a class="l" href="#241">241: </a><span class="php-comment">     * Sanitizes data so that Cross Site Scripting Hacks can be
</span></span><span id="242" class="l"><a class="l" href="#242">242: </a><span class="php-comment">     * prevented.  This function does a fair amount of work but
</span></span><span id="243" class="l"><a class="l" href="#243">243: </a><span class="php-comment">     * it is extremely thorough, designed to prevent even the
</span></span><span id="244" class="l"><a class="l" href="#244">244: </a><span class="php-comment">     * most obscure XSS attempts.  Nothing is ever 100% foolproof,
</span></span><span id="245" class="l"><a class="l" href="#245">245: </a><span class="php-comment">     * of course, but I haven't been able to get anything passed
</span></span><span id="246" class="l"><a class="l" href="#246">246: </a><span class="php-comment">     * the filter.
</span></span><span id="247" class="l"><a class="l" href="#247">247: </a><span class="php-comment">     *
</span></span><span id="248" class="l"><a class="l" href="#248">248: </a><span class="php-comment">     * Note: This function should only be used to deal with data
</span></span><span id="249" class="l"><a class="l" href="#249">249: </a><span class="php-comment">     * upon submission.  It's not something that should
</span></span><span id="250" class="l"><a class="l" href="#250">250: </a><span class="php-comment">     * be used for general runtime processing.
</span></span><span id="251" class="l"><a class="l" href="#251">251: </a><span class="php-comment">     *
</span></span><span id="252" class="l"><a class="l" href="#252">252: </a><span class="php-comment">     * This function was based in part on some code and ideas I
</span></span><span id="253" class="l"><a class="l" href="#253">253: </a><span class="php-comment">     * got from Bitflux: http://channel.bitflux.ch/wiki/XSS_Prevention
</span></span><span id="254" class="l"><a class="l" href="#254">254: </a><span class="php-comment">     *
</span></span><span id="255" class="l"><a class="l" href="#255">255: </a><span class="php-comment">     * To help develop this script I used this great list of
</span></span><span id="256" class="l"><a class="l" href="#256">256: </a><span class="php-comment">     * vulnerabilities along with a few other hacks I've
</span></span><span id="257" class="l"><a class="l" href="#257">257: </a><span class="php-comment">     * harvested from examining vulnerabilities in other programs:
</span></span><span id="258" class="l"><a class="l" href="#258">258: </a><span class="php-comment">     * http://ha.ckers.org/xss.html
</span></span><span id="259" class="l"><a class="l" href="#259">259: </a><span class="php-comment">     *
</span></span><span id="260" class="l"><a class="l" href="#260">260: </a><span class="php-comment">     * @param   mixed   string or array
</span></span><span id="261" class="l"><a class="l" href="#261">261: </a><span class="php-comment">     * @param   bool
</span></span><span id="262" class="l"><a class="l" href="#262">262: </a><span class="php-comment">     * @return  string
</span></span><span id="263" class="l"><a class="l" href="#263">263: </a><span class="php-comment">     */</span>
</span><span id="264" class="l"><a class="l" href="#264">264: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_xss_clean" href="#_xss_clean">xss_clean</a>(<span class="php-var">$str</span>, <span class="php-var">$is_image</span> = <span class="php-keyword1">FALSE</span>)
</span><span id="265" class="l"><a class="l" href="#265">265: </a>    {
</span><span id="266" class="l"><a class="l" href="#266">266: </a>        <span class="php-comment">/*
</span></span><span id="267" class="l"><a class="l" href="#267">267: </a><span class="php-comment">         * Is the string an array?
</span></span><span id="268" class="l"><a class="l" href="#268">268: </a><span class="php-comment">         *
</span></span><span id="269" class="l"><a class="l" href="#269">269: </a><span class="php-comment">         */</span>
</span><span id="270" class="l"><a class="l" href="#270">270: </a>        <span class="php-keyword1">if</span> (<span class="php-keyword2">is_array</span>(<span class="php-var">$str</span>))
</span><span id="271" class="l"><a class="l" href="#271">271: </a>        {
</span><span id="272" class="l"><a class="l" href="#272">272: </a>            <span class="php-keyword1">while</span> (<span class="php-keyword1">list</span>(<span class="php-var">$key</span>) = <span class="php-keyword2">each</span>(<span class="php-var">$str</span>))
</span><span id="273" class="l"><a class="l" href="#273">273: </a>            {
</span><span id="274" class="l"><a class="l" href="#274">274: </a>                <span class="php-var">$str</span>[<span class="php-var">$key</span>] = <span class="php-var">$this</span>-&gt;xss_clean(<span class="php-var">$str</span>[<span class="php-var">$key</span>]);
</span><span id="275" class="l"><a class="l" href="#275">275: </a>            }
</span><span id="276" class="l"><a class="l" href="#276">276: </a>
</span><span id="277" class="l"><a class="l" href="#277">277: </a>            <span class="php-keyword1">return</span> <span class="php-var">$str</span>;
</span><span id="278" class="l"><a class="l" href="#278">278: </a>        }
</span><span id="279" class="l"><a class="l" href="#279">279: </a>
</span><span id="280" class="l"><a class="l" href="#280">280: </a>        <span class="php-comment">/*
</span></span><span id="281" class="l"><a class="l" href="#281">281: </a><span class="php-comment">         * Remove Invisible Characters
</span></span><span id="282" class="l"><a class="l" href="#282">282: </a><span class="php-comment">         */</span>
</span><span id="283" class="l"><a class="l" href="#283">283: </a>        <span class="php-var">$str</span> = remove_invisible_characters(<span class="php-var">$str</span>);
</span><span id="284" class="l"><a class="l" href="#284">284: </a>
</span><span id="285" class="l"><a class="l" href="#285">285: </a>        <span class="php-comment">// Validate Entities in URLs</span>
</span><span id="286" class="l"><a class="l" href="#286">286: </a>        <span class="php-var">$str</span> = <span class="php-var">$this</span>-&gt;_validate_entities(<span class="php-var">$str</span>);
</span><span id="287" class="l"><a class="l" href="#287">287: </a>
</span><span id="288" class="l"><a class="l" href="#288">288: </a>        <span class="php-comment">/*
</span></span><span id="289" class="l"><a class="l" href="#289">289: </a><span class="php-comment">         * URL Decode
</span></span><span id="290" class="l"><a class="l" href="#290">290: </a><span class="php-comment">         *
</span></span><span id="291" class="l"><a class="l" href="#291">291: </a><span class="php-comment">         * Just in case stuff like this is submitted:
</span></span><span id="292" class="l"><a class="l" href="#292">292: </a><span class="php-comment">         *
</span></span><span id="293" class="l"><a class="l" href="#293">293: </a><span class="php-comment">         * &lt;a href=&quot;http://%77%77%77%2E%67%6F%6F%67%6C%65%2E%63%6F%6D&quot;&gt;Google&lt;/a&gt;
</span></span><span id="294" class="l"><a class="l" href="#294">294: </a><span class="php-comment">         *
</span></span><span id="295" class="l"><a class="l" href="#295">295: </a><span class="php-comment">         * Note: Use rawurldecode() so it does not remove plus signs
</span></span><span id="296" class="l"><a class="l" href="#296">296: </a><span class="php-comment">         *
</span></span><span id="297" class="l"><a class="l" href="#297">297: </a><span class="php-comment">         */</span>
</span><span id="298" class="l"><a class="l" href="#298">298: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">rawurldecode</span>(<span class="php-var">$str</span>);
</span><span id="299" class="l"><a class="l" href="#299">299: </a>
</span><span id="300" class="l"><a class="l" href="#300">300: </a>        <span class="php-comment">/*
</span></span><span id="301" class="l"><a class="l" href="#301">301: </a><span class="php-comment">         * Convert character entities to ASCII
</span></span><span id="302" class="l"><a class="l" href="#302">302: </a><span class="php-comment">         *
</span></span><span id="303" class="l"><a class="l" href="#303">303: </a><span class="php-comment">         * This permits our tests below to work reliably.
</span></span><span id="304" class="l"><a class="l" href="#304">304: </a><span class="php-comment">         * We only convert entities that are within tags since
</span></span><span id="305" class="l"><a class="l" href="#305">305: </a><span class="php-comment">         * these are the ones that will pose security problems.
</span></span><span id="306" class="l"><a class="l" href="#306">306: </a><span class="php-comment">         *
</span></span><span id="307" class="l"><a class="l" href="#307">307: </a><span class="php-comment">         */</span>
</span><span id="308" class="l"><a class="l" href="#308">308: </a>
</span><span id="309" class="l"><a class="l" href="#309">309: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace_callback</span>(<span class="php-quote">&quot;/[a-z]+=([\'\&quot;]).*?\\1/si&quot;</span>, <span class="php-keyword1">array</span>(<span class="php-var">$this</span>, <span class="php-quote">'_convert_attribute'</span>), <span class="php-var">$str</span>);
</span><span id="310" class="l"><a class="l" href="#310">310: </a>
</span><span id="311" class="l"><a class="l" href="#311">311: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace_callback</span>(<span class="php-quote">&quot;/&lt;\w+.*?(?=&gt;|&lt;|</span><span class="php-var">$</span><span class="php-quote">)/si&quot;</span>, <span class="php-keyword1">array</span>(<span class="php-var">$this</span>, <span class="php-quote">'_decode_entity'</span>), <span class="php-var">$str</span>);
</span><span id="312" class="l"><a class="l" href="#312">312: </a>
</span><span id="313" class="l"><a class="l" href="#313">313: </a>        <span class="php-comment">/*
</span></span><span id="314" class="l"><a class="l" href="#314">314: </a><span class="php-comment">         * Remove Invisible Characters Again!
</span></span><span id="315" class="l"><a class="l" href="#315">315: </a><span class="php-comment">         */</span>
</span><span id="316" class="l"><a class="l" href="#316">316: </a>        <span class="php-var">$str</span> = remove_invisible_characters(<span class="php-var">$str</span>);
</span><span id="317" class="l"><a class="l" href="#317">317: </a>
</span><span id="318" class="l"><a class="l" href="#318">318: </a>        <span class="php-comment">/*
</span></span><span id="319" class="l"><a class="l" href="#319">319: </a><span class="php-comment">         * Convert all tabs to spaces
</span></span><span id="320" class="l"><a class="l" href="#320">320: </a><span class="php-comment">         *
</span></span><span id="321" class="l"><a class="l" href="#321">321: </a><span class="php-comment">         * This prevents strings like this: ja  vascript
</span></span><span id="322" class="l"><a class="l" href="#322">322: </a><span class="php-comment">         * NOTE: we deal with spaces between characters later.
</span></span><span id="323" class="l"><a class="l" href="#323">323: </a><span class="php-comment">         * NOTE: preg_replace was found to be amazingly slow here on
</span></span><span id="324" class="l"><a class="l" href="#324">324: </a><span class="php-comment">         * large blocks of data, so we use str_replace.
</span></span><span id="325" class="l"><a class="l" href="#325">325: </a><span class="php-comment">         */</span>
</span><span id="326" class="l"><a class="l" href="#326">326: </a>
</span><span id="327" class="l"><a class="l" href="#327">327: </a>        <span class="php-keyword1">if</span> (<span class="php-keyword2">strpos</span>(<span class="php-var">$str</span>, <span class="php-quote">&quot;\t&quot;</span>) !== <span class="php-keyword1">FALSE</span>)
</span><span id="328" class="l"><a class="l" href="#328">328: </a>        {
</span><span id="329" class="l"><a class="l" href="#329">329: </a>            <span class="php-var">$str</span> = <span class="php-keyword2">str_replace</span>(<span class="php-quote">&quot;\t&quot;</span>, <span class="php-quote">' '</span>, <span class="php-var">$str</span>);
</span><span id="330" class="l"><a class="l" href="#330">330: </a>        }
</span><span id="331" class="l"><a class="l" href="#331">331: </a>
</span><span id="332" class="l"><a class="l" href="#332">332: </a>        <span class="php-comment">/*
</span></span><span id="333" class="l"><a class="l" href="#333">333: </a><span class="php-comment">         * Capture converted string for later comparison
</span></span><span id="334" class="l"><a class="l" href="#334">334: </a><span class="php-comment">         */</span>
</span><span id="335" class="l"><a class="l" href="#335">335: </a>        <span class="php-var">$converted_string</span> = <span class="php-var">$str</span>;
</span><span id="336" class="l"><a class="l" href="#336">336: </a>
</span><span id="337" class="l"><a class="l" href="#337">337: </a>        <span class="php-comment">// Remove Strings that are never allowed</span>
</span><span id="338" class="l"><a class="l" href="#338">338: </a>        <span class="php-var">$str</span> = <span class="php-var">$this</span>-&gt;_do_never_allowed(<span class="php-var">$str</span>);
</span><span id="339" class="l"><a class="l" href="#339">339: </a>
</span><span id="340" class="l"><a class="l" href="#340">340: </a>        <span class="php-comment">/*
</span></span><span id="341" class="l"><a class="l" href="#341">341: </a><span class="php-comment">         * Makes PHP tags safe
</span></span><span id="342" class="l"><a class="l" href="#342">342: </a><span class="php-comment">         *
</span></span><span id="343" class="l"><a class="l" href="#343">343: </a><span class="php-comment">         * Note: XML tags are inadvertently replaced too:
</span></span><span id="344" class="l"><a class="l" href="#344">344: </a><span class="php-comment">         *
</span></span><span id="345" class="l"><a class="l" href="#345">345: </a><span class="php-comment">         * &lt;?xml
</span></span><span id="346" class="l"><a class="l" href="#346">346: </a><span class="php-comment">         *
</span></span><span id="347" class="l"><a class="l" href="#347">347: </a><span class="php-comment">         * But it doesn't seem to pose a problem.
</span></span><span id="348" class="l"><a class="l" href="#348">348: </a><span class="php-comment">         */</span>
</span><span id="349" class="l"><a class="l" href="#349">349: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$is_image</span> === <span class="php-keyword1">TRUE</span>)
</span><span id="350" class="l"><a class="l" href="#350">350: </a>        {
</span><span id="351" class="l"><a class="l" href="#351">351: </a>            <span class="php-comment">// Images have a tendency to have the PHP short opening and</span>
</span><span id="352" class="l"><a class="l" href="#352">352: </a>            <span class="php-comment">// closing tags every so often so we skip those and only</span>
</span><span id="353" class="l"><a class="l" href="#353">353: </a>            <span class="php-comment">// do the long opening tags.</span>
</span><span id="354" class="l"><a class="l" href="#354">354: </a>            <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'/&lt;\?(php)/i'</span>, <span class="php-quote">&quot;&amp;lt;?\\1&quot;</span>, <span class="php-var">$str</span>);
</span><span id="355" class="l"><a class="l" href="#355">355: </a>        }
</span><span id="356" class="l"><a class="l" href="#356">356: </a>        <span class="php-keyword1">else</span>
</span><span id="357" class="l"><a class="l" href="#357">357: </a>        {
</span><span id="358" class="l"><a class="l" href="#358">358: </a>            <span class="php-var">$str</span> = <span class="php-keyword2">str_replace</span>(<span class="php-keyword1">array</span>(<span class="php-quote">'&lt;?'</span>, <span class="php-quote">'?'</span>.<span class="php-quote">'&gt;'</span>),  <span class="php-keyword1">array</span>(<span class="php-quote">'&amp;lt;?'</span>, <span class="php-quote">'?&amp;gt;'</span>), <span class="php-var">$str</span>);
</span><span id="359" class="l"><a class="l" href="#359">359: </a>        }
</span><span id="360" class="l"><a class="l" href="#360">360: </a>
</span><span id="361" class="l"><a class="l" href="#361">361: </a>        <span class="php-comment">/*
</span></span><span id="362" class="l"><a class="l" href="#362">362: </a><span class="php-comment">         * Compact any exploded words
</span></span><span id="363" class="l"><a class="l" href="#363">363: </a><span class="php-comment">         *
</span></span><span id="364" class="l"><a class="l" href="#364">364: </a><span class="php-comment">         * This corrects words like:  j a v a s c r i p t
</span></span><span id="365" class="l"><a class="l" href="#365">365: </a><span class="php-comment">         * These words are compacted back to their correct state.
</span></span><span id="366" class="l"><a class="l" href="#366">366: </a><span class="php-comment">         */</span>
</span><span id="367" class="l"><a class="l" href="#367">367: </a>        <span class="php-var">$words</span> = <span class="php-keyword1">array</span>(
</span><span id="368" class="l"><a class="l" href="#368">368: </a>            <span class="php-quote">'javascript'</span>, <span class="php-quote">'expression'</span>, <span class="php-quote">'vbscript'</span>, <span class="php-quote">'script'</span>, <span class="php-quote">'base64'</span>,
</span><span id="369" class="l"><a class="l" href="#369">369: </a>            <span class="php-quote">'applet'</span>, <span class="php-quote">'alert'</span>, <span class="php-quote">'document'</span>, <span class="php-quote">'write'</span>, <span class="php-quote">'cookie'</span>, <span class="php-quote">'window'</span>
</span><span id="370" class="l"><a class="l" href="#370">370: </a>        );
</span><span id="371" class="l"><a class="l" href="#371">371: </a>
</span><span id="372" class="l"><a class="l" href="#372">372: </a>        <span class="php-keyword1">foreach</span> (<span class="php-var">$words</span> <span class="php-keyword1">as</span> <span class="php-var">$word</span>)
</span><span id="373" class="l"><a class="l" href="#373">373: </a>        {
</span><span id="374" class="l"><a class="l" href="#374">374: </a>            <span class="php-var">$temp</span> = <span class="php-quote">''</span>;
</span><span id="375" class="l"><a class="l" href="#375">375: </a>
</span><span id="376" class="l"><a class="l" href="#376">376: </a>            <span class="php-keyword1">for</span> (<span class="php-var">$i</span> = <span class="php-num">0</span>, <span class="php-var">$wordlen</span> = <span class="php-keyword2">strlen</span>(<span class="php-var">$word</span>); <span class="php-var">$i</span> &lt; <span class="php-var">$wordlen</span>; <span class="php-var">$i</span>++)
</span><span id="377" class="l"><a class="l" href="#377">377: </a>            {
</span><span id="378" class="l"><a class="l" href="#378">378: </a>                <span class="php-var">$temp</span> .= <span class="php-keyword2">substr</span>(<span class="php-var">$word</span>, <span class="php-var">$i</span>, <span class="php-num">1</span>).<span class="php-quote">&quot;\s*&quot;</span>;
</span><span id="379" class="l"><a class="l" href="#379">379: </a>            }
</span><span id="380" class="l"><a class="l" href="#380">380: </a>
</span><span id="381" class="l"><a class="l" href="#381">381: </a>            <span class="php-comment">// We only want to do this when it is followed by a non-word character</span>
</span><span id="382" class="l"><a class="l" href="#382">382: </a>            <span class="php-comment">// That way valid stuff like &quot;dealer to&quot; does not become &quot;dealerto&quot;</span>
</span><span id="383" class="l"><a class="l" href="#383">383: </a>            <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace_callback</span>(<span class="php-quote">'#('</span>.<span class="php-keyword2">substr</span>(<span class="php-var">$temp</span>, <span class="php-num">0</span>, -<span class="php-num">3</span>).<span class="php-quote">')(\W)#is'</span>, <span class="php-keyword1">array</span>(<span class="php-var">$this</span>, <span class="php-quote">'_compact_exploded_words'</span>), <span class="php-var">$str</span>);
</span><span id="384" class="l"><a class="l" href="#384">384: </a>        }
</span><span id="385" class="l"><a class="l" href="#385">385: </a>
</span><span id="386" class="l"><a class="l" href="#386">386: </a>        <span class="php-comment">/*
</span></span><span id="387" class="l"><a class="l" href="#387">387: </a><span class="php-comment">         * Remove disallowed Javascript in links or img tags
</span></span><span id="388" class="l"><a class="l" href="#388">388: </a><span class="php-comment">         * We used to do some version comparisons and use of stripos for PHP5,
</span></span><span id="389" class="l"><a class="l" href="#389">389: </a><span class="php-comment">         * but it is dog slow compared to these simplified non-capturing
</span></span><span id="390" class="l"><a class="l" href="#390">390: </a><span class="php-comment">         * preg_match(), especially if the pattern exists in the string
</span></span><span id="391" class="l"><a class="l" href="#391">391: </a><span class="php-comment">         */</span>
</span><span id="392" class="l"><a class="l" href="#392">392: </a>        <span class="php-keyword1">do</span>
</span><span id="393" class="l"><a class="l" href="#393">393: </a>        {
</span><span id="394" class="l"><a class="l" href="#394">394: </a>            <span class="php-var">$original</span> = <span class="php-var">$str</span>;
</span><span id="395" class="l"><a class="l" href="#395">395: </a>
</span><span id="396" class="l"><a class="l" href="#396">396: </a>            <span class="php-keyword1">if</span> (<span class="php-keyword2">preg_match</span>(<span class="php-quote">&quot;/&lt;a/i&quot;</span>, <span class="php-var">$str</span>))
</span><span id="397" class="l"><a class="l" href="#397">397: </a>            {
</span><span id="398" class="l"><a class="l" href="#398">398: </a>                <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace_callback</span>(<span class="php-quote">&quot;#&lt;a\s+([^&gt;]*?)(&gt;|</span><span class="php-var">$</span><span class="php-quote">)#si&quot;</span>, <span class="php-keyword1">array</span>(<span class="php-var">$this</span>, <span class="php-quote">'_js_link_removal'</span>), <span class="php-var">$str</span>);
</span><span id="399" class="l"><a class="l" href="#399">399: </a>            }
</span><span id="400" class="l"><a class="l" href="#400">400: </a>
</span><span id="401" class="l"><a class="l" href="#401">401: </a>            <span class="php-keyword1">if</span> (<span class="php-keyword2">preg_match</span>(<span class="php-quote">&quot;/&lt;img/i&quot;</span>, <span class="php-var">$str</span>))
</span><span id="402" class="l"><a class="l" href="#402">402: </a>            {
</span><span id="403" class="l"><a class="l" href="#403">403: </a>                <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace_callback</span>(<span class="php-quote">&quot;#&lt;img\s+([^&gt;]*?)(\s?/?&gt;|</span><span class="php-var">$</span><span class="php-quote">)#si&quot;</span>, <span class="php-keyword1">array</span>(<span class="php-var">$this</span>, <span class="php-quote">'_js_img_removal'</span>), <span class="php-var">$str</span>);
</span><span id="404" class="l"><a class="l" href="#404">404: </a>            }
</span><span id="405" class="l"><a class="l" href="#405">405: </a>
</span><span id="406" class="l"><a class="l" href="#406">406: </a>            <span class="php-keyword1">if</span> (<span class="php-keyword2">preg_match</span>(<span class="php-quote">&quot;/script/i&quot;</span>, <span class="php-var">$str</span>) <span class="php-keyword1">OR</span> <span class="php-keyword2">preg_match</span>(<span class="php-quote">&quot;/xss/i&quot;</span>, <span class="php-var">$str</span>))
</span><span id="407" class="l"><a class="l" href="#407">407: </a>            {
</span><span id="408" class="l"><a class="l" href="#408">408: </a>                <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">&quot;#&lt;(/*)(script|xss)(.*?)\&gt;#si&quot;</span>, <span class="php-quote">'[removed]'</span>, <span class="php-var">$str</span>);
</span><span id="409" class="l"><a class="l" href="#409">409: </a>            }
</span><span id="410" class="l"><a class="l" href="#410">410: </a>        }
</span><span id="411" class="l"><a class="l" href="#411">411: </a>        <span class="php-keyword1">while</span>(<span class="php-var">$original</span> != <span class="php-var">$str</span>);
</span><span id="412" class="l"><a class="l" href="#412">412: </a>
</span><span id="413" class="l"><a class="l" href="#413">413: </a>        <span class="php-keyword1">unset</span>(<span class="php-var">$original</span>);
</span><span id="414" class="l"><a class="l" href="#414">414: </a>
</span><span id="415" class="l"><a class="l" href="#415">415: </a>        <span class="php-comment">// Remove evil attributes such as style, onclick and xmlns</span>
</span><span id="416" class="l"><a class="l" href="#416">416: </a>        <span class="php-var">$str</span> = <span class="php-var">$this</span>-&gt;_remove_evil_attributes(<span class="php-var">$str</span>, <span class="php-var">$is_image</span>);
</span><span id="417" class="l"><a class="l" href="#417">417: </a>
</span><span id="418" class="l"><a class="l" href="#418">418: </a>        <span class="php-comment">/*
</span></span><span id="419" class="l"><a class="l" href="#419">419: </a><span class="php-comment">         * Sanitize naughty HTML elements
</span></span><span id="420" class="l"><a class="l" href="#420">420: </a><span class="php-comment">         *
</span></span><span id="421" class="l"><a class="l" href="#421">421: </a><span class="php-comment">         * If a tag containing any of the words in the list
</span></span><span id="422" class="l"><a class="l" href="#422">422: </a><span class="php-comment">         * below is found, the tag gets converted to entities.
</span></span><span id="423" class="l"><a class="l" href="#423">423: </a><span class="php-comment">         *
</span></span><span id="424" class="l"><a class="l" href="#424">424: </a><span class="php-comment">         * So this: &lt;blink&gt;
</span></span><span id="425" class="l"><a class="l" href="#425">425: </a><span class="php-comment">         * Becomes: &amp;lt;blink&amp;gt;
</span></span><span id="426" class="l"><a class="l" href="#426">426: </a><span class="php-comment">         */</span>
</span><span id="427" class="l"><a class="l" href="#427">427: </a>        <span class="php-var">$naughty</span> = <span class="php-quote">'alert|applet|audio|basefont|base|behavior|bgsound|blink|body|embed|expression|form|frameset|frame|head|html|ilayer|iframe|input|isindex|layer|link|meta|object|plaintext|style|script|textarea|title|video|xml|xss'</span>;
</span><span id="428" class="l"><a class="l" href="#428">428: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace_callback</span>(<span class="php-quote">'#&lt;(/*\s*)('</span>.<span class="php-var">$naughty</span>.<span class="php-quote">')([^&gt;&lt;]*)([&gt;&lt;]*)#is'</span>, <span class="php-keyword1">array</span>(<span class="php-var">$this</span>, <span class="php-quote">'_sanitize_naughty_html'</span>), <span class="php-var">$str</span>);
</span><span id="429" class="l"><a class="l" href="#429">429: </a>
</span><span id="430" class="l"><a class="l" href="#430">430: </a>        <span class="php-comment">/*
</span></span><span id="431" class="l"><a class="l" href="#431">431: </a><span class="php-comment">         * Sanitize naughty scripting elements
</span></span><span id="432" class="l"><a class="l" href="#432">432: </a><span class="php-comment">         *
</span></span><span id="433" class="l"><a class="l" href="#433">433: </a><span class="php-comment">         * Similar to above, only instead of looking for
</span></span><span id="434" class="l"><a class="l" href="#434">434: </a><span class="php-comment">         * tags it looks for PHP and JavaScript commands
</span></span><span id="435" class="l"><a class="l" href="#435">435: </a><span class="php-comment">         * that are disallowed.  Rather than removing the
</span></span><span id="436" class="l"><a class="l" href="#436">436: </a><span class="php-comment">         * code, it simply converts the parenthesis to entities
</span></span><span id="437" class="l"><a class="l" href="#437">437: </a><span class="php-comment">         * rendering the code un-executable.
</span></span><span id="438" class="l"><a class="l" href="#438">438: </a><span class="php-comment">         *
</span></span><span id="439" class="l"><a class="l" href="#439">439: </a><span class="php-comment">         * For example: eval('some code')
</span></span><span id="440" class="l"><a class="l" href="#440">440: </a><span class="php-comment">         * Becomes:     eval&amp;#40;'some code'&amp;#41;
</span></span><span id="441" class="l"><a class="l" href="#441">441: </a><span class="php-comment">         */</span>
</span><span id="442" class="l"><a class="l" href="#442">442: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'#(alert|cmd|passthru|eval|exec|expression|system|fopen|fsockopen|file|file_get_contents|readfile|unlink)(\s*)\((.*?)\)#si'</span>, <span class="php-quote">&quot;\\1\\2&amp;#40;\\3&amp;#41;&quot;</span>, <span class="php-var">$str</span>);
</span><span id="443" class="l"><a class="l" href="#443">443: </a>
</span><span id="444" class="l"><a class="l" href="#444">444: </a>
</span><span id="445" class="l"><a class="l" href="#445">445: </a>        <span class="php-comment">// Final clean up</span>
</span><span id="446" class="l"><a class="l" href="#446">446: </a>        <span class="php-comment">// This adds a bit of extra precaution in case</span>
</span><span id="447" class="l"><a class="l" href="#447">447: </a>        <span class="php-comment">// something got through the above filters</span>
</span><span id="448" class="l"><a class="l" href="#448">448: </a>        <span class="php-var">$str</span> = <span class="php-var">$this</span>-&gt;_do_never_allowed(<span class="php-var">$str</span>);
</span><span id="449" class="l"><a class="l" href="#449">449: </a>
</span><span id="450" class="l"><a class="l" href="#450">450: </a>        <span class="php-comment">/*
</span></span><span id="451" class="l"><a class="l" href="#451">451: </a><span class="php-comment">         * Images are Handled in a Special Way
</span></span><span id="452" class="l"><a class="l" href="#452">452: </a><span class="php-comment">         * - Essentially, we want to know that after all of the character
</span></span><span id="453" class="l"><a class="l" href="#453">453: </a><span class="php-comment">         * conversion is done whether any unwanted, likely XSS, code was found.
</span></span><span id="454" class="l"><a class="l" href="#454">454: </a><span class="php-comment">         * If not, we return TRUE, as the image is clean.
</span></span><span id="455" class="l"><a class="l" href="#455">455: </a><span class="php-comment">         * However, if the string post-conversion does not matched the
</span></span><span id="456" class="l"><a class="l" href="#456">456: </a><span class="php-comment">         * string post-removal of XSS, then it fails, as there was unwanted XSS
</span></span><span id="457" class="l"><a class="l" href="#457">457: </a><span class="php-comment">         * code found and removed/changed during processing.
</span></span><span id="458" class="l"><a class="l" href="#458">458: </a><span class="php-comment">         */</span>
</span><span id="459" class="l"><a class="l" href="#459">459: </a>
</span><span id="460" class="l"><a class="l" href="#460">460: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$is_image</span> === <span class="php-keyword1">TRUE</span>)
</span><span id="461" class="l"><a class="l" href="#461">461: </a>        {
</span><span id="462" class="l"><a class="l" href="#462">462: </a>            <span class="php-keyword1">return</span> (<span class="php-var">$str</span> == <span class="php-var">$converted_string</span>) ? <span class="php-keyword1">TRUE</span>: <span class="php-keyword1">FALSE</span>;
</span><span id="463" class="l"><a class="l" href="#463">463: </a>        }
</span><span id="464" class="l"><a class="l" href="#464">464: </a>
</span><span id="465" class="l"><a class="l" href="#465">465: </a>        log_message(<span class="php-quote">'debug'</span>, <span class="php-quote">&quot;XSS Filtering completed&quot;</span>);
</span><span id="466" class="l"><a class="l" href="#466">466: </a>        <span class="php-keyword1">return</span> <span class="php-var">$str</span>;
</span><span id="467" class="l"><a class="l" href="#467">467: </a>    }
</span><span id="468" class="l"><a class="l" href="#468">468: </a>
</span><span id="469" class="l"><a class="l" href="#469">469: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="470" class="l"><a class="l" href="#470">470: </a>
</span><span id="471" class="l"><a class="l" href="#471">471: </a>    <span class="php-comment">/**
</span></span><span id="472" class="l"><a class="l" href="#472">472: </a><span class="php-comment">     * Random Hash for protecting URLs
</span></span><span id="473" class="l"><a class="l" href="#473">473: </a><span class="php-comment">     *
</span></span><span id="474" class="l"><a class="l" href="#474">474: </a><span class="php-comment">     * @return  string
</span></span><span id="475" class="l"><a class="l" href="#475">475: </a><span class="php-comment">     */</span>
</span><span id="476" class="l"><a class="l" href="#476">476: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_xss_hash" href="#_xss_hash">xss_hash</a>()
</span><span id="477" class="l"><a class="l" href="#477">477: </a>    {
</span><span id="478" class="l"><a class="l" href="#478">478: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;_xss_hash == <span class="php-quote">''</span>)
</span><span id="479" class="l"><a class="l" href="#479">479: </a>        {
</span><span id="480" class="l"><a class="l" href="#480">480: </a>            <span class="php-keyword2">mt_srand</span>();
</span><span id="481" class="l"><a class="l" href="#481">481: </a>            <span class="php-var">$this</span>-&gt;_xss_hash = <span class="php-keyword2">md5</span>(<span class="php-keyword2">time</span>() + <span class="php-keyword2">mt_rand</span>(<span class="php-num">0</span>, <span class="php-num">1999999999</span>));
</span><span id="482" class="l"><a class="l" href="#482">482: </a>        }
</span><span id="483" class="l"><a class="l" href="#483">483: </a>
</span><span id="484" class="l"><a class="l" href="#484">484: </a>        <span class="php-keyword1">return</span> <span class="php-var">$this</span>-&gt;_xss_hash;
</span><span id="485" class="l"><a class="l" href="#485">485: </a>    }
</span><span id="486" class="l"><a class="l" href="#486">486: </a>
</span><span id="487" class="l"><a class="l" href="#487">487: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="488" class="l"><a class="l" href="#488">488: </a>
</span><span id="489" class="l"><a class="l" href="#489">489: </a>    <span class="php-comment">/**
</span></span><span id="490" class="l"><a class="l" href="#490">490: </a><span class="php-comment">     * HTML Entities Decode
</span></span><span id="491" class="l"><a class="l" href="#491">491: </a><span class="php-comment">     *
</span></span><span id="492" class="l"><a class="l" href="#492">492: </a><span class="php-comment">     * This function is a replacement for html_entity_decode()
</span></span><span id="493" class="l"><a class="l" href="#493">493: </a><span class="php-comment">     *
</span></span><span id="494" class="l"><a class="l" href="#494">494: </a><span class="php-comment">     * The reason we are not using html_entity_decode() by itself is because
</span></span><span id="495" class="l"><a class="l" href="#495">495: </a><span class="php-comment">     * while it is not technically correct to leave out the semicolon
</span></span><span id="496" class="l"><a class="l" href="#496">496: </a><span class="php-comment">     * at the end of an entity most browsers will still interpret the entity
</span></span><span id="497" class="l"><a class="l" href="#497">497: </a><span class="php-comment">     * correctly.  html_entity_decode() does not convert entities without
</span></span><span id="498" class="l"><a class="l" href="#498">498: </a><span class="php-comment">     * semicolons, so we are left with our own little solution here. Bummer.
</span></span><span id="499" class="l"><a class="l" href="#499">499: </a><span class="php-comment">     *
</span></span><span id="500" class="l"><a class="l" href="#500">500: </a><span class="php-comment">     * @param   string
</span></span><span id="501" class="l"><a class="l" href="#501">501: </a><span class="php-comment">     * @param   string
</span></span><span id="502" class="l"><a class="l" href="#502">502: </a><span class="php-comment">     * @return  string
</span></span><span id="503" class="l"><a class="l" href="#503">503: </a><span class="php-comment">     */</span>
</span><span id="504" class="l"><a class="l" href="#504">504: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_entity_decode" href="#_entity_decode">entity_decode</a>(<span class="php-var">$str</span>, <span class="php-var">$charset</span>=<span class="php-quote">'UTF-8'</span>)
</span><span id="505" class="l"><a class="l" href="#505">505: </a>    {
</span><span id="506" class="l"><a class="l" href="#506">506: </a>        <span class="php-keyword1">if</span> (<span class="php-keyword2">stristr</span>(<span class="php-var">$str</span>, <span class="php-quote">'&amp;'</span>) === <span class="php-keyword1">FALSE</span>)
</span><span id="507" class="l"><a class="l" href="#507">507: </a>        {
</span><span id="508" class="l"><a class="l" href="#508">508: </a>            <span class="php-keyword1">return</span> <span class="php-var">$str</span>;
</span><span id="509" class="l"><a class="l" href="#509">509: </a>        }
</span><span id="510" class="l"><a class="l" href="#510">510: </a>
</span><span id="511" class="l"><a class="l" href="#511">511: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">html_entity_decode</span>(<span class="php-var">$str</span>, ENT_COMPAT, <span class="php-var">$charset</span>);
</span><span id="512" class="l"><a class="l" href="#512">512: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'~&amp;#x(0*[0-9a-f]{2,5})~ei'</span>, <span class="php-quote">'chr(hexdec(&quot;\\1&quot;))'</span>, <span class="php-var">$str</span>);
</span><span id="513" class="l"><a class="l" href="#513">513: </a>        <span class="php-keyword1">return</span> <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'~&amp;#([0-9]{2,4})~e'</span>, <span class="php-quote">'chr(\\1)'</span>, <span class="php-var">$str</span>);
</span><span id="514" class="l"><a class="l" href="#514">514: </a>    }
</span><span id="515" class="l"><a class="l" href="#515">515: </a>
</span><span id="516" class="l"><a class="l" href="#516">516: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="517" class="l"><a class="l" href="#517">517: </a>
</span><span id="518" class="l"><a class="l" href="#518">518: </a>    <span class="php-comment">/**
</span></span><span id="519" class="l"><a class="l" href="#519">519: </a><span class="php-comment">     * Filename Security
</span></span><span id="520" class="l"><a class="l" href="#520">520: </a><span class="php-comment">     *
</span></span><span id="521" class="l"><a class="l" href="#521">521: </a><span class="php-comment">     * @param   string
</span></span><span id="522" class="l"><a class="l" href="#522">522: </a><span class="php-comment">     * @param   bool
</span></span><span id="523" class="l"><a class="l" href="#523">523: </a><span class="php-comment">     * @return  string
</span></span><span id="524" class="l"><a class="l" href="#524">524: </a><span class="php-comment">     */</span>
</span><span id="525" class="l"><a class="l" href="#525">525: </a>    <span class="php-keyword1">public</span> <span class="php-keyword1">function</span> <a id="_sanitize_filename" href="#_sanitize_filename">sanitize_filename</a>(<span class="php-var">$str</span>, <span class="php-var">$relative_path</span> = <span class="php-keyword1">FALSE</span>)
</span><span id="526" class="l"><a class="l" href="#526">526: </a>    {
</span><span id="527" class="l"><a class="l" href="#527">527: </a>        <span class="php-var">$bad</span> = <span class="php-keyword1">array</span>(
</span><span id="528" class="l"><a class="l" href="#528">528: </a>            <span class="php-quote">&quot;../&quot;</span>,
</span><span id="529" class="l"><a class="l" href="#529">529: </a>            <span class="php-quote">&quot;&lt;!--&quot;</span>,
</span><span id="530" class="l"><a class="l" href="#530">530: </a>            <span class="php-quote">&quot;--&gt;&quot;</span>,
</span><span id="531" class="l"><a class="l" href="#531">531: </a>            <span class="php-quote">&quot;&lt;&quot;</span>,
</span><span id="532" class="l"><a class="l" href="#532">532: </a>            <span class="php-quote">&quot;&gt;&quot;</span>,
</span><span id="533" class="l"><a class="l" href="#533">533: </a>            <span class="php-quote">&quot;'&quot;</span>,
</span><span id="534" class="l"><a class="l" href="#534">534: </a>            <span class="php-quote">'&quot;'</span>,
</span><span id="535" class="l"><a class="l" href="#535">535: </a>            <span class="php-quote">'&amp;'</span>,
</span><span id="536" class="l"><a class="l" href="#536">536: </a>            <span class="php-quote">'$'</span>,
</span><span id="537" class="l"><a class="l" href="#537">537: </a>            <span class="php-quote">'#'</span>,
</span><span id="538" class="l"><a class="l" href="#538">538: </a>            <span class="php-quote">'{'</span>,
</span><span id="539" class="l"><a class="l" href="#539">539: </a>            <span class="php-quote">'}'</span>,
</span><span id="540" class="l"><a class="l" href="#540">540: </a>            <span class="php-quote">'['</span>,
</span><span id="541" class="l"><a class="l" href="#541">541: </a>            <span class="php-quote">']'</span>,
</span><span id="542" class="l"><a class="l" href="#542">542: </a>            <span class="php-quote">'='</span>,
</span><span id="543" class="l"><a class="l" href="#543">543: </a>            <span class="php-quote">';'</span>,
</span><span id="544" class="l"><a class="l" href="#544">544: </a>            <span class="php-quote">'?'</span>,
</span><span id="545" class="l"><a class="l" href="#545">545: </a>            <span class="php-quote">&quot;%20&quot;</span>,
</span><span id="546" class="l"><a class="l" href="#546">546: </a>            <span class="php-quote">&quot;%22&quot;</span>,
</span><span id="547" class="l"><a class="l" href="#547">547: </a>            <span class="php-quote">&quot;%3c&quot;</span>,      <span class="php-comment">// &lt;</span>
</span><span id="548" class="l"><a class="l" href="#548">548: </a>            <span class="php-quote">&quot;%253c&quot;</span>,    <span class="php-comment">// &lt;</span>
</span><span id="549" class="l"><a class="l" href="#549">549: </a>            <span class="php-quote">&quot;%3e&quot;</span>,      <span class="php-comment">// &gt;</span>
</span><span id="550" class="l"><a class="l" href="#550">550: </a>            <span class="php-quote">&quot;%0e&quot;</span>,      <span class="php-comment">// &gt;</span>
</span><span id="551" class="l"><a class="l" href="#551">551: </a>            <span class="php-quote">&quot;%28&quot;</span>,      <span class="php-comment">// (</span>
</span><span id="552" class="l"><a class="l" href="#552">552: </a>            <span class="php-quote">&quot;%29&quot;</span>,      <span class="php-comment">// )</span>
</span><span id="553" class="l"><a class="l" href="#553">553: </a>            <span class="php-quote">&quot;%2528&quot;</span>,    <span class="php-comment">// (</span>
</span><span id="554" class="l"><a class="l" href="#554">554: </a>            <span class="php-quote">&quot;%26&quot;</span>,      <span class="php-comment">// &amp;</span>
</span><span id="555" class="l"><a class="l" href="#555">555: </a>            <span class="php-quote">&quot;%24&quot;</span>,      <span class="php-comment">// $</span>
</span><span id="556" class="l"><a class="l" href="#556">556: </a>            <span class="php-quote">&quot;%3f&quot;</span>,      <span class="php-comment">// ?</span>
</span><span id="557" class="l"><a class="l" href="#557">557: </a>            <span class="php-quote">&quot;%3b&quot;</span>,      <span class="php-comment">// ;</span>
</span><span id="558" class="l"><a class="l" href="#558">558: </a>            <span class="php-quote">&quot;%3d&quot;</span>       <span class="php-comment">// =</span>
</span><span id="559" class="l"><a class="l" href="#559">559: </a>        );
</span><span id="560" class="l"><a class="l" href="#560">560: </a>
</span><span id="561" class="l"><a class="l" href="#561">561: </a>        <span class="php-keyword1">if</span> ( ! <span class="php-var">$relative_path</span>)
</span><span id="562" class="l"><a class="l" href="#562">562: </a>        {
</span><span id="563" class="l"><a class="l" href="#563">563: </a>            <span class="php-var">$bad</span>[] = <span class="php-quote">'./'</span>;
</span><span id="564" class="l"><a class="l" href="#564">564: </a>            <span class="php-var">$bad</span>[] = <span class="php-quote">'/'</span>;
</span><span id="565" class="l"><a class="l" href="#565">565: </a>        }
</span><span id="566" class="l"><a class="l" href="#566">566: </a>
</span><span id="567" class="l"><a class="l" href="#567">567: </a>        <span class="php-var">$str</span> = remove_invisible_characters(<span class="php-var">$str</span>, <span class="php-keyword1">FALSE</span>);
</span><span id="568" class="l"><a class="l" href="#568">568: </a>        <span class="php-keyword1">return</span> <span class="php-keyword2">stripslashes</span>(<span class="php-keyword2">str_replace</span>(<span class="php-var">$bad</span>, <span class="php-quote">''</span>, <span class="php-var">$str</span>));
</span><span id="569" class="l"><a class="l" href="#569">569: </a>    }
</span><span id="570" class="l"><a class="l" href="#570">570: </a>
</span><span id="571" class="l"><a class="l" href="#571">571: </a>    <span class="php-comment">// ----------------------------------------------------------------</span>
</span><span id="572" class="l"><a class="l" href="#572">572: </a>
</span><span id="573" class="l"><a class="l" href="#573">573: </a>    <span class="php-comment">/**
</span></span><span id="574" class="l"><a class="l" href="#574">574: </a><span class="php-comment">     * Compact Exploded Words
</span></span><span id="575" class="l"><a class="l" href="#575">575: </a><span class="php-comment">     *
</span></span><span id="576" class="l"><a class="l" href="#576">576: </a><span class="php-comment">     * Callback function for xss_clean() to remove whitespace from
</span></span><span id="577" class="l"><a class="l" href="#577">577: </a><span class="php-comment">     * things like j a v a s c r i p t
</span></span><span id="578" class="l"><a class="l" href="#578">578: </a><span class="php-comment">     *
</span></span><span id="579" class="l"><a class="l" href="#579">579: </a><span class="php-comment">     * @param   type
</span></span><span id="580" class="l"><a class="l" href="#580">580: </a><span class="php-comment">     * @return  type
</span></span><span id="581" class="l"><a class="l" href="#581">581: </a><span class="php-comment">     */</span>
</span><span id="582" class="l"><a class="l" href="#582">582: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__compact_exploded_words" href="#__compact_exploded_words">_compact_exploded_words</a>(<span class="php-var">$matches</span>)
</span><span id="583" class="l"><a class="l" href="#583">583: </a>    {
</span><span id="584" class="l"><a class="l" href="#584">584: </a>        <span class="php-keyword1">return</span> <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'/\s+/s'</span>, <span class="php-quote">''</span>, <span class="php-var">$matches</span>[<span class="php-num">1</span>]).<span class="php-var">$matches</span>[<span class="php-num">2</span>];
</span><span id="585" class="l"><a class="l" href="#585">585: </a>    }
</span><span id="586" class="l"><a class="l" href="#586">586: </a>
</span><span id="587" class="l"><a class="l" href="#587">587: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="588" class="l"><a class="l" href="#588">588: </a>
</span><span id="589" class="l"><a class="l" href="#589">589: </a>    <span class="php-comment">/*
</span></span><span id="590" class="l"><a class="l" href="#590">590: </a><span class="php-comment">     * Remove Evil HTML Attributes (like evenhandlers and style)
</span></span><span id="591" class="l"><a class="l" href="#591">591: </a><span class="php-comment">     *
</span></span><span id="592" class="l"><a class="l" href="#592">592: </a><span class="php-comment">     * It removes the evil attribute and either:
</span></span><span id="593" class="l"><a class="l" href="#593">593: </a><span class="php-comment">     *  - Everything up until a space
</span></span><span id="594" class="l"><a class="l" href="#594">594: </a><span class="php-comment">     *      For example, everything between the pipes:
</span></span><span id="595" class="l"><a class="l" href="#595">595: </a><span class="php-comment">     *      &lt;a |style=document.write('hello');alert('world');| class=link&gt;
</span></span><span id="596" class="l"><a class="l" href="#596">596: </a><span class="php-comment">     *  - Everything inside the quotes
</span></span><span id="597" class="l"><a class="l" href="#597">597: </a><span class="php-comment">     *      For example, everything between the pipes:
</span></span><span id="598" class="l"><a class="l" href="#598">598: </a><span class="php-comment">     *      &lt;a |style=&quot;document.write('hello'); alert('world');&quot;| class=&quot;link&quot;&gt;
</span></span><span id="599" class="l"><a class="l" href="#599">599: </a><span class="php-comment">     *
</span></span><span id="600" class="l"><a class="l" href="#600">600: </a><span class="php-comment">     * @param string $str The string to check
</span></span><span id="601" class="l"><a class="l" href="#601">601: </a><span class="php-comment">     * @param boolean $is_image TRUE if this is an image
</span></span><span id="602" class="l"><a class="l" href="#602">602: </a><span class="php-comment">     * @return string The string with the evil attributes removed
</span></span><span id="603" class="l"><a class="l" href="#603">603: </a><span class="php-comment">     */</span>
</span><span id="604" class="l"><a class="l" href="#604">604: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__remove_evil_attributes" href="#__remove_evil_attributes">_remove_evil_attributes</a>(<span class="php-var">$str</span>, <span class="php-var">$is_image</span>)
</span><span id="605" class="l"><a class="l" href="#605">605: </a>    {
</span><span id="606" class="l"><a class="l" href="#606">606: </a>        <span class="php-comment">// All javascript event handlers (e.g. onload, onclick, onmouseover), style, and xmlns</span>
</span><span id="607" class="l"><a class="l" href="#607">607: </a>        <span class="php-var">$evil_attributes</span> = <span class="php-keyword1">array</span>(<span class="php-quote">'on\w*'</span>, <span class="php-quote">'style'</span>, <span class="php-quote">'xmlns'</span>, <span class="php-quote">'formaction'</span>);
</span><span id="608" class="l"><a class="l" href="#608">608: </a>
</span><span id="609" class="l"><a class="l" href="#609">609: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$is_image</span> === <span class="php-keyword1">TRUE</span>)
</span><span id="610" class="l"><a class="l" href="#610">610: </a>        {
</span><span id="611" class="l"><a class="l" href="#611">611: </a>            <span class="php-comment">/*
</span></span><span id="612" class="l"><a class="l" href="#612">612: </a><span class="php-comment">             * Adobe Photoshop puts XML metadata into JFIF images, 
</span></span><span id="613" class="l"><a class="l" href="#613">613: </a><span class="php-comment">             * including namespacing, so we have to allow this for images.
</span></span><span id="614" class="l"><a class="l" href="#614">614: </a><span class="php-comment">             */</span>
</span><span id="615" class="l"><a class="l" href="#615">615: </a>            <span class="php-keyword1">unset</span>(<span class="php-var">$evil_attributes</span>[<span class="php-keyword2">array_search</span>(<span class="php-quote">'xmlns'</span>, <span class="php-var">$evil_attributes</span>)]);
</span><span id="616" class="l"><a class="l" href="#616">616: </a>        }
</span><span id="617" class="l"><a class="l" href="#617">617: </a>
</span><span id="618" class="l"><a class="l" href="#618">618: </a>        <span class="php-keyword1">do</span> {
</span><span id="619" class="l"><a class="l" href="#619">619: </a>            <span class="php-var">$count</span> = <span class="php-num">0</span>;
</span><span id="620" class="l"><a class="l" href="#620">620: </a>            <span class="php-var">$attribs</span> = <span class="php-keyword1">array</span>();
</span><span id="621" class="l"><a class="l" href="#621">621: </a>
</span><span id="622" class="l"><a class="l" href="#622">622: </a>            <span class="php-comment">// find occurrences of illegal attribute strings without quotes</span>
</span><span id="623" class="l"><a class="l" href="#623">623: </a>            <span class="php-keyword2">preg_match_all</span>(<span class="php-quote">'/('</span>.<span class="php-keyword2">implode</span>(<span class="php-quote">'|'</span>, <span class="php-var">$evil_attributes</span>).<span class="php-quote">')\s*=\s*([^\s&gt;]*)/is'</span>, <span class="php-var">$str</span>, <span class="php-var">$matches</span>, PREG_SET_ORDER);
</span><span id="624" class="l"><a class="l" href="#624">624: </a>
</span><span id="625" class="l"><a class="l" href="#625">625: </a>            <span class="php-keyword1">foreach</span> (<span class="php-var">$matches</span> <span class="php-keyword1">as</span> <span class="php-var">$attr</span>)
</span><span id="626" class="l"><a class="l" href="#626">626: </a>            {
</span><span id="627" class="l"><a class="l" href="#627">627: </a>
</span><span id="628" class="l"><a class="l" href="#628">628: </a>                <span class="php-var">$attribs</span>[] = <span class="php-keyword2">preg_quote</span>(<span class="php-var">$attr</span>[<span class="php-num">0</span>], <span class="php-quote">'/'</span>);
</span><span id="629" class="l"><a class="l" href="#629">629: </a>            }
</span><span id="630" class="l"><a class="l" href="#630">630: </a>
</span><span id="631" class="l"><a class="l" href="#631">631: </a>            <span class="php-comment">// find occurrences of illegal attribute strings with quotes (042 and 047 are octal quotes)</span>
</span><span id="632" class="l"><a class="l" href="#632">632: </a>            <span class="php-keyword2">preg_match_all</span>(<span class="php-quote">&quot;/(&quot;</span>.<span class="php-keyword2">implode</span>(<span class="php-quote">'|'</span>, <span class="php-var">$evil_attributes</span>).<span class="php-quote">&quot;)\s*=\s*(\042|\047)([^\\2]*?)(\\2)/is&quot;</span>,  <span class="php-var">$str</span>, <span class="php-var">$matches</span>, PREG_SET_ORDER);
</span><span id="633" class="l"><a class="l" href="#633">633: </a>
</span><span id="634" class="l"><a class="l" href="#634">634: </a>            <span class="php-keyword1">foreach</span> (<span class="php-var">$matches</span> <span class="php-keyword1">as</span> <span class="php-var">$attr</span>)
</span><span id="635" class="l"><a class="l" href="#635">635: </a>            {
</span><span id="636" class="l"><a class="l" href="#636">636: </a>                <span class="php-var">$attribs</span>[] = <span class="php-keyword2">preg_quote</span>(<span class="php-var">$attr</span>[<span class="php-num">0</span>], <span class="php-quote">'/'</span>);
</span><span id="637" class="l"><a class="l" href="#637">637: </a>            }
</span><span id="638" class="l"><a class="l" href="#638">638: </a>
</span><span id="639" class="l"><a class="l" href="#639">639: </a>            <span class="php-comment">// replace illegal attribute strings that are inside an html tag</span>
</span><span id="640" class="l"><a class="l" href="#640">640: </a>            <span class="php-keyword1">if</span> (<span class="php-keyword2">count</span>(<span class="php-var">$attribs</span>) &gt; <span class="php-num">0</span>)
</span><span id="641" class="l"><a class="l" href="#641">641: </a>            {
</span><span id="642" class="l"><a class="l" href="#642">642: </a>                <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">&quot;/&lt;(\/?[^&gt;&lt;]+?)([^A-Za-z&lt;&gt;\-])(.*?)(&quot;</span>.<span class="php-keyword2">implode</span>(<span class="php-quote">'|'</span>, <span class="php-var">$attribs</span>).<span class="php-quote">&quot;)(.*?)([\s&gt;&lt;])([&gt;&lt;]*)/i&quot;</span>, <span class="php-quote">'&lt;$1 $3$5$6$7'</span>, <span class="php-var">$str</span>, -<span class="php-num">1</span>, <span class="php-var">$count</span>);
</span><span id="643" class="l"><a class="l" href="#643">643: </a>            }
</span><span id="644" class="l"><a class="l" href="#644">644: </a>
</span><span id="645" class="l"><a class="l" href="#645">645: </a>        } <span class="php-keyword1">while</span> (<span class="php-var">$count</span>);
</span><span id="646" class="l"><a class="l" href="#646">646: </a>
</span><span id="647" class="l"><a class="l" href="#647">647: </a>        <span class="php-keyword1">return</span> <span class="php-var">$str</span>;
</span><span id="648" class="l"><a class="l" href="#648">648: </a>    }
</span><span id="649" class="l"><a class="l" href="#649">649: </a>
</span><span id="650" class="l"><a class="l" href="#650">650: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="651" class="l"><a class="l" href="#651">651: </a>
</span><span id="652" class="l"><a class="l" href="#652">652: </a>    <span class="php-comment">/**
</span></span><span id="653" class="l"><a class="l" href="#653">653: </a><span class="php-comment">     * Sanitize Naughty HTML
</span></span><span id="654" class="l"><a class="l" href="#654">654: </a><span class="php-comment">     *
</span></span><span id="655" class="l"><a class="l" href="#655">655: </a><span class="php-comment">     * Callback function for xss_clean() to remove naughty HTML elements
</span></span><span id="656" class="l"><a class="l" href="#656">656: </a><span class="php-comment">     *
</span></span><span id="657" class="l"><a class="l" href="#657">657: </a><span class="php-comment">     * @param   array
</span></span><span id="658" class="l"><a class="l" href="#658">658: </a><span class="php-comment">     * @return  string
</span></span><span id="659" class="l"><a class="l" href="#659">659: </a><span class="php-comment">     */</span>
</span><span id="660" class="l"><a class="l" href="#660">660: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__sanitize_naughty_html" href="#__sanitize_naughty_html">_sanitize_naughty_html</a>(<span class="php-var">$matches</span>)
</span><span id="661" class="l"><a class="l" href="#661">661: </a>    {
</span><span id="662" class="l"><a class="l" href="#662">662: </a>        <span class="php-comment">// encode opening brace</span>
</span><span id="663" class="l"><a class="l" href="#663">663: </a>        <span class="php-var">$str</span> = <span class="php-quote">'&amp;lt;'</span>.<span class="php-var">$matches</span>[<span class="php-num">1</span>].<span class="php-var">$matches</span>[<span class="php-num">2</span>].<span class="php-var">$matches</span>[<span class="php-num">3</span>];
</span><span id="664" class="l"><a class="l" href="#664">664: </a>
</span><span id="665" class="l"><a class="l" href="#665">665: </a>        <span class="php-comment">// encode captured opening or closing brace to prevent recursive vectors</span>
</span><span id="666" class="l"><a class="l" href="#666">666: </a>        <span class="php-var">$str</span> .= <span class="php-keyword2">str_replace</span>(<span class="php-keyword1">array</span>(<span class="php-quote">'&gt;'</span>, <span class="php-quote">'&lt;'</span>), <span class="php-keyword1">array</span>(<span class="php-quote">'&amp;gt;'</span>, <span class="php-quote">'&amp;lt;'</span>),
</span><span id="667" class="l"><a class="l" href="#667">667: </a>                            <span class="php-var">$matches</span>[<span class="php-num">4</span>]);
</span><span id="668" class="l"><a class="l" href="#668">668: </a>
</span><span id="669" class="l"><a class="l" href="#669">669: </a>        <span class="php-keyword1">return</span> <span class="php-var">$str</span>;
</span><span id="670" class="l"><a class="l" href="#670">670: </a>    }
</span><span id="671" class="l"><a class="l" href="#671">671: </a>
</span><span id="672" class="l"><a class="l" href="#672">672: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="673" class="l"><a class="l" href="#673">673: </a>
</span><span id="674" class="l"><a class="l" href="#674">674: </a>    <span class="php-comment">/**
</span></span><span id="675" class="l"><a class="l" href="#675">675: </a><span class="php-comment">     * JS Link Removal
</span></span><span id="676" class="l"><a class="l" href="#676">676: </a><span class="php-comment">     *
</span></span><span id="677" class="l"><a class="l" href="#677">677: </a><span class="php-comment">     * Callback function for xss_clean() to sanitize links
</span></span><span id="678" class="l"><a class="l" href="#678">678: </a><span class="php-comment">     * This limits the PCRE backtracks, making it more performance friendly
</span></span><span id="679" class="l"><a class="l" href="#679">679: </a><span class="php-comment">     * and prevents PREG_BACKTRACK_LIMIT_ERROR from being triggered in
</span></span><span id="680" class="l"><a class="l" href="#680">680: </a><span class="php-comment">     * PHP 5.2+ on link-heavy strings
</span></span><span id="681" class="l"><a class="l" href="#681">681: </a><span class="php-comment">     *
</span></span><span id="682" class="l"><a class="l" href="#682">682: </a><span class="php-comment">     * @param   array
</span></span><span id="683" class="l"><a class="l" href="#683">683: </a><span class="php-comment">     * @return  string
</span></span><span id="684" class="l"><a class="l" href="#684">684: </a><span class="php-comment">     */</span>
</span><span id="685" class="l"><a class="l" href="#685">685: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__js_link_removal" href="#__js_link_removal">_js_link_removal</a>(<span class="php-var">$match</span>)
</span><span id="686" class="l"><a class="l" href="#686">686: </a>    {
</span><span id="687" class="l"><a class="l" href="#687">687: </a>        <span class="php-keyword1">return</span> <span class="php-keyword2">str_replace</span>(
</span><span id="688" class="l"><a class="l" href="#688">688: </a>            <span class="php-var">$match</span>[<span class="php-num">1</span>],
</span><span id="689" class="l"><a class="l" href="#689">689: </a>            <span class="php-keyword2">preg_replace</span>(
</span><span id="690" class="l"><a class="l" href="#690">690: </a>                <span class="php-quote">'#href=.*?(alert\(|alert&amp;\#40;|javascript\:|livescript\:|mocha\:|charset\=|window\.|document\.|\.cookie|&lt;script|&lt;xss|data\s*:)#si'</span>,
</span><span id="691" class="l"><a class="l" href="#691">691: </a>                <span class="php-quote">''</span>,
</span><span id="692" class="l"><a class="l" href="#692">692: </a>                <span class="php-var">$this</span>-&gt;_filter_attributes(<span class="php-keyword2">str_replace</span>(<span class="php-keyword1">array</span>(<span class="php-quote">'&lt;'</span>, <span class="php-quote">'&gt;'</span>), <span class="php-quote">''</span>, <span class="php-var">$match</span>[<span class="php-num">1</span>]))
</span><span id="693" class="l"><a class="l" href="#693">693: </a>            ),
</span><span id="694" class="l"><a class="l" href="#694">694: </a>            <span class="php-var">$match</span>[<span class="php-num">0</span>]
</span><span id="695" class="l"><a class="l" href="#695">695: </a>        );
</span><span id="696" class="l"><a class="l" href="#696">696: </a>    }
</span><span id="697" class="l"><a class="l" href="#697">697: </a>
</span><span id="698" class="l"><a class="l" href="#698">698: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="699" class="l"><a class="l" href="#699">699: </a>
</span><span id="700" class="l"><a class="l" href="#700">700: </a>    <span class="php-comment">/**
</span></span><span id="701" class="l"><a class="l" href="#701">701: </a><span class="php-comment">     * JS Image Removal
</span></span><span id="702" class="l"><a class="l" href="#702">702: </a><span class="php-comment">     *
</span></span><span id="703" class="l"><a class="l" href="#703">703: </a><span class="php-comment">     * Callback function for xss_clean() to sanitize image tags
</span></span><span id="704" class="l"><a class="l" href="#704">704: </a><span class="php-comment">     * This limits the PCRE backtracks, making it more performance friendly
</span></span><span id="705" class="l"><a class="l" href="#705">705: </a><span class="php-comment">     * and prevents PREG_BACKTRACK_LIMIT_ERROR from being triggered in
</span></span><span id="706" class="l"><a class="l" href="#706">706: </a><span class="php-comment">     * PHP 5.2+ on image tag heavy strings
</span></span><span id="707" class="l"><a class="l" href="#707">707: </a><span class="php-comment">     *
</span></span><span id="708" class="l"><a class="l" href="#708">708: </a><span class="php-comment">     * @param   array
</span></span><span id="709" class="l"><a class="l" href="#709">709: </a><span class="php-comment">     * @return  string
</span></span><span id="710" class="l"><a class="l" href="#710">710: </a><span class="php-comment">     */</span>
</span><span id="711" class="l"><a class="l" href="#711">711: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__js_img_removal" href="#__js_img_removal">_js_img_removal</a>(<span class="php-var">$match</span>)
</span><span id="712" class="l"><a class="l" href="#712">712: </a>    {
</span><span id="713" class="l"><a class="l" href="#713">713: </a>        <span class="php-keyword1">return</span> <span class="php-keyword2">str_replace</span>(
</span><span id="714" class="l"><a class="l" href="#714">714: </a>            <span class="php-var">$match</span>[<span class="php-num">1</span>],
</span><span id="715" class="l"><a class="l" href="#715">715: </a>            <span class="php-keyword2">preg_replace</span>(
</span><span id="716" class="l"><a class="l" href="#716">716: </a>                <span class="php-quote">'#src=.*?(alert\(|alert&amp;\#40;|javascript\:|livescript\:|mocha\:|charset\=|window\.|document\.|\.cookie|&lt;script|&lt;xss|base64\s*,)#si'</span>,
</span><span id="717" class="l"><a class="l" href="#717">717: </a>                <span class="php-quote">''</span>,
</span><span id="718" class="l"><a class="l" href="#718">718: </a>                <span class="php-var">$this</span>-&gt;_filter_attributes(<span class="php-keyword2">str_replace</span>(<span class="php-keyword1">array</span>(<span class="php-quote">'&lt;'</span>, <span class="php-quote">'&gt;'</span>), <span class="php-quote">''</span>, <span class="php-var">$match</span>[<span class="php-num">1</span>]))
</span><span id="719" class="l"><a class="l" href="#719">719: </a>            ),
</span><span id="720" class="l"><a class="l" href="#720">720: </a>            <span class="php-var">$match</span>[<span class="php-num">0</span>]
</span><span id="721" class="l"><a class="l" href="#721">721: </a>        );
</span><span id="722" class="l"><a class="l" href="#722">722: </a>    }
</span><span id="723" class="l"><a class="l" href="#723">723: </a>
</span><span id="724" class="l"><a class="l" href="#724">724: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="725" class="l"><a class="l" href="#725">725: </a>
</span><span id="726" class="l"><a class="l" href="#726">726: </a>    <span class="php-comment">/**
</span></span><span id="727" class="l"><a class="l" href="#727">727: </a><span class="php-comment">     * Attribute Conversion
</span></span><span id="728" class="l"><a class="l" href="#728">728: </a><span class="php-comment">     *
</span></span><span id="729" class="l"><a class="l" href="#729">729: </a><span class="php-comment">     * Used as a callback for XSS Clean
</span></span><span id="730" class="l"><a class="l" href="#730">730: </a><span class="php-comment">     *
</span></span><span id="731" class="l"><a class="l" href="#731">731: </a><span class="php-comment">     * @param   array
</span></span><span id="732" class="l"><a class="l" href="#732">732: </a><span class="php-comment">     * @return  string
</span></span><span id="733" class="l"><a class="l" href="#733">733: </a><span class="php-comment">     */</span>
</span><span id="734" class="l"><a class="l" href="#734">734: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__convert_attribute" href="#__convert_attribute">_convert_attribute</a>(<span class="php-var">$match</span>)
</span><span id="735" class="l"><a class="l" href="#735">735: </a>    {
</span><span id="736" class="l"><a class="l" href="#736">736: </a>        <span class="php-keyword1">return</span> <span class="php-keyword2">str_replace</span>(<span class="php-keyword1">array</span>(<span class="php-quote">'&gt;'</span>, <span class="php-quote">'&lt;'</span>, <span class="php-quote">'\\'</span>), <span class="php-keyword1">array</span>(<span class="php-quote">'&amp;gt;'</span>, <span class="php-quote">'&amp;lt;'</span>, <span class="php-quote">'\\\\'</span>), <span class="php-var">$match</span>[<span class="php-num">0</span>]);
</span><span id="737" class="l"><a class="l" href="#737">737: </a>    }
</span><span id="738" class="l"><a class="l" href="#738">738: </a>
</span><span id="739" class="l"><a class="l" href="#739">739: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="740" class="l"><a class="l" href="#740">740: </a>
</span><span id="741" class="l"><a class="l" href="#741">741: </a>    <span class="php-comment">/**
</span></span><span id="742" class="l"><a class="l" href="#742">742: </a><span class="php-comment">     * Filter Attributes
</span></span><span id="743" class="l"><a class="l" href="#743">743: </a><span class="php-comment">     *
</span></span><span id="744" class="l"><a class="l" href="#744">744: </a><span class="php-comment">     * Filters tag attributes for consistency and safety
</span></span><span id="745" class="l"><a class="l" href="#745">745: </a><span class="php-comment">     *
</span></span><span id="746" class="l"><a class="l" href="#746">746: </a><span class="php-comment">     * @param   string
</span></span><span id="747" class="l"><a class="l" href="#747">747: </a><span class="php-comment">     * @return  string
</span></span><span id="748" class="l"><a class="l" href="#748">748: </a><span class="php-comment">     */</span>
</span><span id="749" class="l"><a class="l" href="#749">749: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__filter_attributes" href="#__filter_attributes">_filter_attributes</a>(<span class="php-var">$str</span>)
</span><span id="750" class="l"><a class="l" href="#750">750: </a>    {
</span><span id="751" class="l"><a class="l" href="#751">751: </a>        <span class="php-var">$out</span> = <span class="php-quote">''</span>;
</span><span id="752" class="l"><a class="l" href="#752">752: </a>
</span><span id="753" class="l"><a class="l" href="#753">753: </a>        <span class="php-keyword1">if</span> (<span class="php-keyword2">preg_match_all</span>(<span class="php-quote">'#\s*[a-z\-]+\s*=\s*(\042|\047)([^\\1]*?)\\1#is'</span>, <span class="php-var">$str</span>, <span class="php-var">$matches</span>))
</span><span id="754" class="l"><a class="l" href="#754">754: </a>        {
</span><span id="755" class="l"><a class="l" href="#755">755: </a>            <span class="php-keyword1">foreach</span> (<span class="php-var">$matches</span>[<span class="php-num">0</span>] <span class="php-keyword1">as</span> <span class="php-var">$match</span>)
</span><span id="756" class="l"><a class="l" href="#756">756: </a>            {
</span><span id="757" class="l"><a class="l" href="#757">757: </a>                <span class="php-var">$out</span> .= <span class="php-keyword2">preg_replace</span>(<span class="php-quote">&quot;#/\*.*?\*/#s&quot;</span>, <span class="php-quote">''</span>, <span class="php-var">$match</span>);
</span><span id="758" class="l"><a class="l" href="#758">758: </a>            }
</span><span id="759" class="l"><a class="l" href="#759">759: </a>        }
</span><span id="760" class="l"><a class="l" href="#760">760: </a>
</span><span id="761" class="l"><a class="l" href="#761">761: </a>        <span class="php-keyword1">return</span> <span class="php-var">$out</span>;
</span><span id="762" class="l"><a class="l" href="#762">762: </a>    }
</span><span id="763" class="l"><a class="l" href="#763">763: </a>
</span><span id="764" class="l"><a class="l" href="#764">764: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="765" class="l"><a class="l" href="#765">765: </a>
</span><span id="766" class="l"><a class="l" href="#766">766: </a>    <span class="php-comment">/**
</span></span><span id="767" class="l"><a class="l" href="#767">767: </a><span class="php-comment">     * HTML Entity Decode Callback
</span></span><span id="768" class="l"><a class="l" href="#768">768: </a><span class="php-comment">     *
</span></span><span id="769" class="l"><a class="l" href="#769">769: </a><span class="php-comment">     * Used as a callback for XSS Clean
</span></span><span id="770" class="l"><a class="l" href="#770">770: </a><span class="php-comment">     *
</span></span><span id="771" class="l"><a class="l" href="#771">771: </a><span class="php-comment">     * @param   array
</span></span><span id="772" class="l"><a class="l" href="#772">772: </a><span class="php-comment">     * @return  string
</span></span><span id="773" class="l"><a class="l" href="#773">773: </a><span class="php-comment">     */</span>
</span><span id="774" class="l"><a class="l" href="#774">774: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__decode_entity" href="#__decode_entity">_decode_entity</a>(<span class="php-var">$match</span>)
</span><span id="775" class="l"><a class="l" href="#775">775: </a>    {
</span><span id="776" class="l"><a class="l" href="#776">776: </a>        <span class="php-keyword1">return</span> <span class="php-var">$this</span>-&gt;entity_decode(<span class="php-var">$match</span>[<span class="php-num">0</span>], <span class="php-keyword2">strtoupper</span>(config_item(<span class="php-quote">'charset'</span>)));
</span><span id="777" class="l"><a class="l" href="#777">777: </a>    }
</span><span id="778" class="l"><a class="l" href="#778">778: </a>
</span><span id="779" class="l"><a class="l" href="#779">779: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="780" class="l"><a class="l" href="#780">780: </a>
</span><span id="781" class="l"><a class="l" href="#781">781: </a>    <span class="php-comment">/**
</span></span><span id="782" class="l"><a class="l" href="#782">782: </a><span class="php-comment">     * Validate URL entities
</span></span><span id="783" class="l"><a class="l" href="#783">783: </a><span class="php-comment">     *
</span></span><span id="784" class="l"><a class="l" href="#784">784: </a><span class="php-comment">     * Called by xss_clean()
</span></span><span id="785" class="l"><a class="l" href="#785">785: </a><span class="php-comment">     *
</span></span><span id="786" class="l"><a class="l" href="#786">786: </a><span class="php-comment">     * @param   string
</span></span><span id="787" class="l"><a class="l" href="#787">787: </a><span class="php-comment">     * @return  string
</span></span><span id="788" class="l"><a class="l" href="#788">788: </a><span class="php-comment">     */</span>
</span><span id="789" class="l"><a class="l" href="#789">789: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__validate_entities" href="#__validate_entities">_validate_entities</a>(<span class="php-var">$str</span>)
</span><span id="790" class="l"><a class="l" href="#790">790: </a>    {
</span><span id="791" class="l"><a class="l" href="#791">791: </a>        <span class="php-comment">/*
</span></span><span id="792" class="l"><a class="l" href="#792">792: </a><span class="php-comment">         * Protect GET variables in URLs
</span></span><span id="793" class="l"><a class="l" href="#793">793: </a><span class="php-comment">         */</span>
</span><span id="794" class="l"><a class="l" href="#794">794: </a>
</span><span id="795" class="l"><a class="l" href="#795">795: </a>         <span class="php-comment">// 901119URL5918AMP18930PROTECT8198</span>
</span><span id="796" class="l"><a class="l" href="#796">796: </a>
</span><span id="797" class="l"><a class="l" href="#797">797: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'|\&amp;([a-z\_0-9\-]+)\=([a-z\_0-9\-]+)|i'</span>, <span class="php-var">$this</span>-&gt;xss_hash().<span class="php-quote">&quot;\\1=\\2&quot;</span>, <span class="php-var">$str</span>);
</span><span id="798" class="l"><a class="l" href="#798">798: </a>
</span><span id="799" class="l"><a class="l" href="#799">799: </a>        <span class="php-comment">/*
</span></span><span id="800" class="l"><a class="l" href="#800">800: </a><span class="php-comment">         * Validate standard character entities
</span></span><span id="801" class="l"><a class="l" href="#801">801: </a><span class="php-comment">         *
</span></span><span id="802" class="l"><a class="l" href="#802">802: </a><span class="php-comment">         * Add a semicolon if missing.  We do this to enable
</span></span><span id="803" class="l"><a class="l" href="#803">803: </a><span class="php-comment">         * the conversion of entities to ASCII later.
</span></span><span id="804" class="l"><a class="l" href="#804">804: </a><span class="php-comment">         *
</span></span><span id="805" class="l"><a class="l" href="#805">805: </a><span class="php-comment">         */</span>
</span><span id="806" class="l"><a class="l" href="#806">806: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'#(&amp;\#?[0-9a-z]{2,})([\x00-\x20])*;?#i'</span>, <span class="php-quote">&quot;\\1;\\2&quot;</span>, <span class="php-var">$str</span>);
</span><span id="807" class="l"><a class="l" href="#807">807: </a>
</span><span id="808" class="l"><a class="l" href="#808">808: </a>        <span class="php-comment">/*
</span></span><span id="809" class="l"><a class="l" href="#809">809: </a><span class="php-comment">         * Validate UTF16 two byte encoding (x00)
</span></span><span id="810" class="l"><a class="l" href="#810">810: </a><span class="php-comment">         *
</span></span><span id="811" class="l"><a class="l" href="#811">811: </a><span class="php-comment">         * Just as above, adds a semicolon if missing.
</span></span><span id="812" class="l"><a class="l" href="#812">812: </a><span class="php-comment">         *
</span></span><span id="813" class="l"><a class="l" href="#813">813: </a><span class="php-comment">         */</span>
</span><span id="814" class="l"><a class="l" href="#814">814: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'#(&amp;\#x?)([0-9A-F]+);?#i'</span>,<span class="php-quote">&quot;\\1\\2;&quot;</span>,<span class="php-var">$str</span>);
</span><span id="815" class="l"><a class="l" href="#815">815: </a>
</span><span id="816" class="l"><a class="l" href="#816">816: </a>        <span class="php-comment">/*
</span></span><span id="817" class="l"><a class="l" href="#817">817: </a><span class="php-comment">         * Un-Protect GET variables in URLs
</span></span><span id="818" class="l"><a class="l" href="#818">818: </a><span class="php-comment">         */</span>
</span><span id="819" class="l"><a class="l" href="#819">819: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">str_replace</span>(<span class="php-var">$this</span>-&gt;xss_hash(), <span class="php-quote">'&amp;'</span>, <span class="php-var">$str</span>);
</span><span id="820" class="l"><a class="l" href="#820">820: </a>
</span><span id="821" class="l"><a class="l" href="#821">821: </a>        <span class="php-keyword1">return</span> <span class="php-var">$str</span>;
</span><span id="822" class="l"><a class="l" href="#822">822: </a>    }
</span><span id="823" class="l"><a class="l" href="#823">823: </a>
</span><span id="824" class="l"><a class="l" href="#824">824: </a>    <span class="php-comment">// ----------------------------------------------------------------------</span>
</span><span id="825" class="l"><a class="l" href="#825">825: </a>
</span><span id="826" class="l"><a class="l" href="#826">826: </a>    <span class="php-comment">/**
</span></span><span id="827" class="l"><a class="l" href="#827">827: </a><span class="php-comment">     * Do Never Allowed
</span></span><span id="828" class="l"><a class="l" href="#828">828: </a><span class="php-comment">     *
</span></span><span id="829" class="l"><a class="l" href="#829">829: </a><span class="php-comment">     * A utility function for xss_clean()
</span></span><span id="830" class="l"><a class="l" href="#830">830: </a><span class="php-comment">     *
</span></span><span id="831" class="l"><a class="l" href="#831">831: </a><span class="php-comment">     * @param   string
</span></span><span id="832" class="l"><a class="l" href="#832">832: </a><span class="php-comment">     * @return  string
</span></span><span id="833" class="l"><a class="l" href="#833">833: </a><span class="php-comment">     */</span>
</span><span id="834" class="l"><a class="l" href="#834">834: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__do_never_allowed" href="#__do_never_allowed">_do_never_allowed</a>(<span class="php-var">$str</span>)
</span><span id="835" class="l"><a class="l" href="#835">835: </a>    {
</span><span id="836" class="l"><a class="l" href="#836">836: </a>        <span class="php-var">$str</span> = <span class="php-keyword2">str_replace</span>(<span class="php-keyword2">array_keys</span>(<span class="php-var">$this</span>-&gt;_never_allowed_str), <span class="php-var">$this</span>-&gt;_never_allowed_str, <span class="php-var">$str</span>);
</span><span id="837" class="l"><a class="l" href="#837">837: </a>
</span><span id="838" class="l"><a class="l" href="#838">838: </a>        <span class="php-keyword1">foreach</span> (<span class="php-var">$this</span>-&gt;_never_allowed_regex <span class="php-keyword1">as</span> <span class="php-var">$regex</span>)
</span><span id="839" class="l"><a class="l" href="#839">839: </a>        {
</span><span id="840" class="l"><a class="l" href="#840">840: </a>            <span class="php-var">$str</span> = <span class="php-keyword2">preg_replace</span>(<span class="php-quote">'#'</span>.<span class="php-var">$regex</span>.<span class="php-quote">'#is'</span>, <span class="php-quote">'[removed]'</span>, <span class="php-var">$str</span>);
</span><span id="841" class="l"><a class="l" href="#841">841: </a>        }
</span><span id="842" class="l"><a class="l" href="#842">842: </a>
</span><span id="843" class="l"><a class="l" href="#843">843: </a>        <span class="php-keyword1">return</span> <span class="php-var">$str</span>;
</span><span id="844" class="l"><a class="l" href="#844">844: </a>    }
</span><span id="845" class="l"><a class="l" href="#845">845: </a>
</span><span id="846" class="l"><a class="l" href="#846">846: </a>    <span class="php-comment">// --------------------------------------------------------------------</span>
</span><span id="847" class="l"><a class="l" href="#847">847: </a>
</span><span id="848" class="l"><a class="l" href="#848">848: </a>    <span class="php-comment">/**
</span></span><span id="849" class="l"><a class="l" href="#849">849: </a><span class="php-comment">     * Set Cross Site Request Forgery Protection Cookie
</span></span><span id="850" class="l"><a class="l" href="#850">850: </a><span class="php-comment">     *
</span></span><span id="851" class="l"><a class="l" href="#851">851: </a><span class="php-comment">     * @return  string
</span></span><span id="852" class="l"><a class="l" href="#852">852: </a><span class="php-comment">     */</span>
</span><span id="853" class="l"><a class="l" href="#853">853: </a>    <span class="php-keyword1">protected</span> <span class="php-keyword1">function</span> <a id="__csrf_set_hash" href="#__csrf_set_hash">_csrf_set_hash</a>()
</span><span id="854" class="l"><a class="l" href="#854">854: </a>    {
</span><span id="855" class="l"><a class="l" href="#855">855: </a>        <span class="php-keyword1">if</span> (<span class="php-var">$this</span>-&gt;_csrf_hash == <span class="php-quote">''</span>)
</span><span id="856" class="l"><a class="l" href="#856">856: </a>        {
</span><span id="857" class="l"><a class="l" href="#857">857: </a>            <span class="php-comment">// If the cookie exists we will use it's value.</span>
</span><span id="858" class="l"><a class="l" href="#858">858: </a>            <span class="php-comment">// We don't necessarily want to regenerate it with</span>
</span><span id="859" class="l"><a class="l" href="#859">859: </a>            <span class="php-comment">// each page load since a page could contain embedded</span>
</span><span id="860" class="l"><a class="l" href="#860">860: </a>            <span class="php-comment">// sub-pages causing this feature to fail</span>
</span><span id="861" class="l"><a class="l" href="#861">861: </a>            <span class="php-keyword1">if</span> (<span class="php-keyword1">isset</span>(<span class="php-var">$_COOKIE</span>[<span class="php-var">$this</span>-&gt;_csrf_cookie_name]) &amp;&amp;
</span><span id="862" class="l"><a class="l" href="#862">862: </a>                <span class="php-keyword2">preg_match</span>(<span class="php-quote">'#^[0-9a-f]{32}$#iS'</span>, <span class="php-var">$_COOKIE</span>[<span class="php-var">$this</span>-&gt;_csrf_cookie_name]) === <span class="php-num">1</span>)
</span><span id="863" class="l"><a class="l" href="#863">863: </a>            {
</span><span id="864" class="l"><a class="l" href="#864">864: </a>                <span class="php-keyword1">return</span> <span class="php-var">$this</span>-&gt;_csrf_hash = <span class="php-var">$_COOKIE</span>[<span class="php-var">$this</span>-&gt;_csrf_cookie_name];
</span><span id="865" class="l"><a class="l" href="#865">865: </a>            }
</span><span id="866" class="l"><a class="l" href="#866">866: </a>
</span><span id="867" class="l"><a class="l" href="#867">867: </a>            <span class="php-keyword1">return</span> <span class="php-var">$this</span>-&gt;_csrf_hash = <span class="php-keyword2">md5</span>(<span class="php-keyword2">uniqid</span>(<span class="php-keyword2">rand</span>(), <span class="php-keyword1">TRUE</span>));
</span><span id="868" class="l"><a class="l" href="#868">868: </a>        }
</span><span id="869" class="l"><a class="l" href="#869">869: </a>
</span><span id="870" class="l"><a class="l" href="#870">870: </a>        <span class="php-keyword1">return</span> <span class="php-var">$this</span>-&gt;_csrf_hash;
</span><span id="871" class="l"><a class="l" href="#871">871: </a>    }
</span><span id="872" class="l"><a class="l" href="#872">872: </a>
</span><span id="873" class="l"><a class="l" href="#873">873: </a>}
</span><span id="874" class="l"><a class="l" href="#874">874: </a>
</span><span id="875" class="l"><a class="l" href="#875">875: </a><span class="php-comment">/* End of file Security.php */</span>
</span><span id="876" class="l"><a class="l" href="#876">876: </a></span><span class="php-comment">/* Location: ./system/libraries/Security.php */</span></code></pre>

	<div id="footer">
		tis API documentation generated by <a href="http://apigen.org">ApiGen 2.8.0</a>
	</div>
</div>
</div>
</body>
</html>
